Lucene search
Veracode Vulnerability DatabaseVERACODE:7797HistoryNov 15, 2018 - 6:34 a.m.
Cross-site Scripting (XSS)
2018-11-1506:34:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.001 Low
EPSS
Percentile
44.8%
ckeditor is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists due to the lack of sanitization on the value entered in the CKEditor source area, allowing XSS attacks to occur when switched to WYSIWYG mode.
References
ckeditor.com/blog/CKEditor-4.11-with-emoji-dropdown-and-auto-link-on-typing-released/
ckeditor.com/cke4/release/CKEditor-4.11.0
github.com/ckeditor/ckeditor-releases/commit/771a944d579c099f6af3d6c9e4b6cc3099b3d24b
github.com/ckeditor/ckeditor4/commit/f4c14b67f49e2e03c4009745d086e3e6989f6f56
github.com/ckeditor/ckeditor4/pull/2487
Related
ibm
ibm
typo3
typo3
Cross-Site Scripting in CKEditor
2018-12-11 00:00:00
prion
prion
Cross site scripting
2018-11-14 20:29:00
friendsofphp
friendsofphp
Cross-Site Scripting in CKEditor
2018-12-11 09:55:56
Cross-Site Scripting in CKEditor
2018-12-11 09:55:56
cve
cve
CVE-2018-17960
2018-11-14 20:29:00
osv
osv
Ckeditor XSS Vulnerability
2018-11-21 22:19:50
CVE-2018-17960
2018-11-14 20:29:00
nvd
nvd
CVE-2018-17960
2018-11-14 20:29:00
cvelist
cvelist
CVE-2018-17960
2018-11-14 20:00:00
ubuntucve
ubuntucve
CVE-2018-17960
2018-11-14 00:00:00
debiancve
debiancve
CVE-2018-17960
2018-11-14 20:29:00
github
github
Ckeditor XSS Vulnerability
2018-11-21 22:19:50
nessus
nessus
Fedora 29 : ckeditor (2019-ae7f274d24)
2019-03-06 00:00:00
Fedora 28 : ckeditor (2019-31ad8a36d8)
2019-03-07 00:00:00
openvas
openvas
Fedora Update for ckeditor FEDORA-2019-ae7f274d24
2019-05-07 00:00:00
OTRS 6.0.x < 7.0.24, 8.0.x < 8.0.11 Multiple Vulnerabilities
2021-02-10 00:00:00
Fedora Update for ckeditor FEDORA-2019-31ad8a36d8
2019-03-07 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: ckeditor-4.11.2-1.fc28
2019-03-06 15:29:01
[SECURITY] Fedora 29 Update: ckeditor-4.11.2-1.fc29
2019-03-06 06:59:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2019
2019-07-16 00:00:00