Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-05-22	CVE-2018-11093	Cross-site Scripting vulnerability in Ckeditor 5-Link Cross-site scripting (XSS) vulnerability in the Link package for CKEditor 5 before 10.0.1 allows remote attackers to inject arbitrary web script through a crafted href attribute of a link (A) element. network ckeditor CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.