Slab Quill

2 CVEs affecting Slab Quill. Latest disclosed: 2026-01-13. Critical: 0, High: 0.

Top CVEs affecting Slab Quill
CVESeverityScorePublishedSummary
CVE-2025-15056Medium6.12026-01-13A lack of data validation vulnerability in the HTML export feature in Quill in allows Cross-Site Scripting (XSS). This issue affects Quill: 2.0.3.
CVE-2021-3163Medium6.12021-04-12A vulnerability in the HTML editor of Slab Quill 4.8.0 allows an attacker to execute arbitrary JavaScript by storing an XSS payload (a crafted onloadstart attr…