EPSS
Percentile
30.3%
xhEditor 1.2.2 allows XSS via JavaScript code in the SRC attribute of an IFRAME element within the editorβs source-code view.
github.com/yaniswang/xhEditor/issues/37