ckeditor4

13 known vulnerabilities · 0 critical · 4 high

Cross-site Scripting in CKEditor4

Published Mar 16, 2022

Inclusion of Functionality from Untrusted Control Sphere in CKEditor 4

Published Oct 13, 2021

Improper Neutralization of Input During Web Page Generation in CKEditor4

Published May 24, 2022

Widget feature vulnerability allowing to execute JavaScript code using undo functionality

Published Aug 23, 2021

Clipboard feature vulnerability allowing to inject arbitrary HTML into the editor using paste functionality

Published Aug 23, 2021

Code Snippet GeSHi plugin in CKEditor 4 has reflected cross-site scripting (XSS) vulnerability

Published Aug 21, 2024

HTML comments vulnerability allowing to execute JavaScript code

Published Nov 17, 2021

CKEditor4 Cross-site Scripting vulnerability caused by incorrect CDATA detection

Published Feb 7, 2024

Advanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML

Published Nov 17, 2021

CKEditor 4.0 vulnerability in the HTML Data Processor

Published May 7, 2021

Fake objects feature vulnerability allowing to execute JavaScript code using malformed HTML.

Published Aug 23, 2021

ckeditor4 vulnerable to cross-site scripting

Published Jun 21, 2021

CKEditor cross-site scripting vulnerability in AJAX sample

Published Feb 7, 2024

Check your entire dependency tree at onceRun dependency scan →