Slab Quill
2 CVEs affecting Slab Quill. Latest disclosed: 2026-01-13. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-15056 | Medium | 6.1 | 2026-01-13 | A lack of data validation vulnerability in the HTML export feature in Quill in allows Cross-Site Scripting (XSS). This issue affects Quill: 2.0.3. |
CVE-2021-3163 | Medium | 6.1 | 2021-04-12 | A vulnerability in the HTML editor of Slab Quill 4.8.0 allows an attacker to execute arbitrary JavaScript by storing an XSS payload (a crafted onloadstart attr… |