W2Ning

**Name of the Vulnerable Software and Affected Versions** Froala WYSIWYG Editor version 3.1.0 **Description** A cross site scripting (XSS) vulnerability in the Insert Video function of Froala WYSIWYG Editor allows attackers to execute arbitrary web scripts or HTML. **Recommendations** For Froala WYSIWYG Editor version 3.1.0, consider disabling the Insert Video function as a temporary workaround until a patch is available. Restrict access to this function to minimize the risk of exploitation.