CKEditor is an open source, web-based text editor. A cross-site scripting vulnerability exists in CKEditor4, which stems from the presence of a cross-site scripting vulnerability that can be exploited by an attacker to execute JavaScript code by abusing a misconfigured preview function.
CPE | Name | Operator | Version |
---|---|---|---|
ckeditor ckeditor >=4.0, | lt | 4.24.0 |