Vulnerabilities > Ckeditor > Ckeditor > 4.2.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-11-14 | CVE-2018-17960 | Cross-site Scripting vulnerability in Ckeditor CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source-mode paste. | 4.3 |
2014-08-07 | CVE-2014-5191 | Cross-Site Scripting vulnerability in Ckeditor Cross-site scripting (XSS) vulnerability in the Preview plugin before 4.4.3 in CKEditor allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |