Basecamp Trix
5 CVEs affecting Basecamp Trix. Latest disclosed: 2025-05-08. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-43368 | Medium | 6.5 | 2024-08-14 | The Trix editor, versions prior to 2.1.4, is vulnerable to XSS when pasting malicious code. This vulnerability is a bypass of the fix put in place for GHSA-qjq… |
CVE-2024-34341 | Medium | 5.4 | 2024-05-07 | Trix is a rich text editor. The Trix editor, versions prior to 2.1.1, is vulnerable to arbitrary code execution when copying and pasting content from the web o… |
CVE-2025-21610 | Medium | 5.3 | 2025-01-03 | Trix is a what-you-see-is-what-you-get rich text editor for everyday writing. Versions prior to 2.1.12 are vulnerable to cross-site scripting when pasting mali… |
CVE-2025-46812 | | 2025-05-08 | Trix is a what-you-see-is-what-you-get rich text editor for everyday writing. Versions prior to 2.1.15 are vulnerable to XSS attacks when pasting malicious cod… | |
CVE-2024-53847 | | 2024-12-09 | The Trix rich text editor, prior to versions 2.1.9 and 1.3.3, is vulnerable to cross-site scripting (XSS) + mutation XSS attacks when pasting malicious code. A… |