OsVault/npm/ckeditor4
npm

ckeditor4

13 known vulnerabilities · 0 critical · 4 high

CVE-2021-32808HIGH

Widget feature vulnerability allowing to execute JavaScript code using undo functionality

Published Aug 23, 2021
CVE-2021-26272MEDIUM

Inclusion of Functionality from Untrusted Control Sphere in CKEditor 4

Published Oct 13, 2021
CVE-2021-32809MEDIUM

Clipboard feature vulnerability allowing to inject arbitrary HTML into the editor using paste functionality

Published Aug 23, 2021
CVE-2020-27193MEDIUM

Improper Neutralization of Input During Web Page Generation in CKEditor4

Published May 24, 2022
CVE-2024-43407MEDIUM

Code Snippet GeSHi plugin in CKEditor 4 has reflected cross-site scripting (XSS) vulnerability

Published Aug 21, 2024
CVE-2021-41165HIGH

HTML comments vulnerability allowing to execute JavaScript code

Published Nov 17, 2021
CVE-2024-24815MEDIUM

CKEditor4 Cross-site Scripting vulnerability caused by incorrect CDATA detection

Published Feb 7, 2024
CVE-2021-41164HIGH

Advanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML

Published Nov 17, 2021
CVE-2020-9281MEDIUM

CKEditor 4.0 vulnerability in the HTML Data Processor

Published May 7, 2021
CVE-2022-24728MEDIUM

Cross-site Scripting in CKEditor4

Published Mar 16, 2022
CVE-2021-37695HIGH

Fake objects feature vulnerability allowing to execute JavaScript code using malformed HTML.

Published Aug 23, 2021
CVE-2021-33829MEDIUM

ckeditor4 vulnerable to cross-site scripting

Published Jun 21, 2021
CVE-2023-4771MEDIUM

CKEditor cross-site scripting vulnerability in AJAX sample

Published Feb 7, 2024
Check your entire dependency tree at onceRun dependency scan →