Lucene search
GoogleOSV:CVE-2020-9440HistoryMar 10, 2020 - 5:15 p.m.
CVE-2020-9440
2020-03-1017:15:13
Google
osv.dev
10
A cross-site scripting (XSS) vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor.
References
ckeditor.com/blog/CKEditor-4.14-with-Paste-from-LibreOffice-released/#security-issues-fixed
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7OJ4BSS3VEAEXPNSOOUAXX6RDNECGZNO/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L322YA73LCV3TO7ORY45WQDAFJVNKXBE/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M4HHYQ6N452XTCIROFMJOTYEUWSB6FR4/
Related
nvd
nvd
CVE-2020-9440
2020-03-10 17:15:13
prion
prion
Cross site scripting
2020-03-10 17:15:00
cve
cve
CVE-2020-9440
2020-03-10 17:15:13
ubuntucve
ubuntucve
CVE-2020-9440
2020-03-10 00:00:00
cvelist
cvelist
CVE-2020-9440
2020-03-10 16:57:12
fedora
fedora
[SECURITY] Fedora 32 Update: ckeditor-4.14.0-1.fc32
2020-03-29 00:17:51
[SECURITY] Fedora 30 Update: ckeditor-4.14.0-1.fc30
2020-03-29 01:59:48
[SECURITY] Fedora 31 Update: ckeditor-4.14.0-1.fc31
2020-03-29 01:37:32
openvas
openvas
Fedora: Security Advisory for ckeditor (FEDORA-2020-261449d821)
2020-03-29 00:00:00
Fedora: Security Advisory for ckeditor (FEDORA-2020-8d5de93970)
2020-03-29 00:00:00
Fedora: Security Advisory for ckeditor (FEDORA-2020-a832c215bf)
2020-03-29 00:00:00
nessus
nessus
Fedora 31 : ckeditor (2020-a832c215bf)
2020-03-30 00:00:00
Fedora 30 : ckeditor (2020-261449d821)
2020-03-30 00:00:00
ibm
ibm