Lucene search
China National Vulnerability DatabaseCNVD-2021-93368HistoryNov 18, 2021 - 12:00 a.m.
CKEditor Cross-Site Scripting Vulnerability (CNVD-2021-93368)
2021-11-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
0.004 Low
EPSS
Percentile
75.1%
CKEditor is a set of open source, web-based text editors.A cross-site scripting vulnerability exists in CKEditor, which allows attackers to bypass content cleanup to inject misformatted HTML, which could lead to the execution of JavaScript code. No detailed vulnerability details are currently available.
| CPE | Name | Operator | Version |
|---|---|---|---|
| CKEditor CKEditor >=4.0, | lt | 4.17.0 |
Related
osv
osv
BIT-drupal-2021-41164
2024-03-06 10:55:15
CVE-2021-41164
2021-11-17 19:15:08
nvd
nvd
CVE-2021-41164
2021-11-17 19:15:08
ubuntucve
ubuntucve
CVE-2021-41164
2021-11-17 00:00:00
prion
prion
Hardcoded credentials
2021-11-17 19:15:00
veracode
veracode
Cross-Site Scripting (XSS)
2021-11-18 06:26:36
github
github
cve
cve
CVE-2021-41164
2021-11-17 19:15:08
debiancve
debiancve
CVE-2021-41164
2021-11-17 19:15:08
cvelist
cvelist
openvas
openvas
nessus
nessus
Drupal 8.9.x < 8.9.20 / 9.1.x < 9.1.14 / 9.2.x < 9.2.9 Multiple Vulnerabilities (drupal-2021-11-17)
2021-11-18 00:00:00
Drupal 8.9.x < 8.9.20 Cross-Site Scripting
2021-11-25 00:00:00
Drupal 9.2.x < 9.2.9 Cross-Site Scripting
2021-11-25 00:00:00
drupal
drupal
Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2021-011
2021-11-17 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: ckeditor-4.20.0-1.fc37
2022-11-10 22:46:03
[SECURITY] Fedora 36 Update: ckeditor-4.20.0-1.fc36
2022-10-23 09:04:30
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00