Wreck1Top

**Name of the Vulnerable Software and Affected Versions** kindeditor version 4.1.12 **Description** The issue is related to a Cross Site Scripting (XSS) vulnerability in the `content1` parameter in `demo.jsp` of kindeditor. This allows attackers to execute arbitrary code. **Recommendations** For kindeditor version 4.1.12, consider disabling the `demo.jsp` page or restricting access to it until a patch is available. Avoid using the `content1` parameter in the affected page to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.