Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0630

Malicious code in bioql PyPI...

6.1CVSS6.7AI score0.00706EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-24815

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module i...

6.1CVSS6.6AI score0.00706EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-24816

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior t...

6.1CVSS6.8AI score0.01652EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/02/07 5:31 p.m.41 views

CKEditor4 Cross-site Scripting vulnerability in samples with enabled the preview feature

Affected packages The vulnerability has been discovered in the samples that use the preview feature: samples/old//.html plugins/plugin name/samples//.html All integrators that use these samples in the production code can be affected. Impact A potential vulnerability has been discovered in one of...

6.1CVSS6.2AI score0.01652EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2024/02/07 5:30 p.m.182 views

CKEditor4 Cross-site Scripting vulnerability caused by incorrect CDATA detection

Affected packages The vulnerability has been discovered in the core HTML parsing module and may affect all editor instances that: Enabled full-page editing mode, or enabled CDATA elements in Advanced Content Filtering configuration defaults to script and style elements. Impact A potential...

6.1CVSS6.5AI score0.00706EPSS
Exploits0References8Affected Software2
NVD
NVD
added 2024/02/07 5:15 p.m.23 views

CVE-2024-24816

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior to 4.24.0-lts in samples that use the preview feature. All integrators that use these samples in the production code can be affected. The...

6.1CVSS6.1AI score0.01652EPSS
Exploits0References3
Prion
Prion
added 2024/02/07 5:15 p.m.29 views

Cross site scripting

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior to 4.24.0-lts in samples that use the preview feature. All integrators that use these samples in the production code can be affected. The...

5.8CVSS6.2AI score0.01652EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/02/07 4:58 p.m.19 views

CVE-2024-24816

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior to 4.24.0-lts in samples that use the preview feature. All integrators that use these samples in the production code can be affected. The...

6.1CVSS6.2AI score0.01652EPSS
Exploits0
OSV
OSV
added 2024/02/07 4:58 p.m.17 views

CVE-2024-24816 Cross-site scripting (XSS) vulnerability in samples with enabled the preview feature

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior to 4.24.0-lts in samples that use the preview feature. All integrators that use these samples in the production code can be affected. The...

6.1CVSS6.3AI score0.01652EPSS
Exploits0References5
NVD
NVD
added 2024/02/07 4:15 p.m.24 views

CVE-2024-24815

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module in versions of CKEditor4 prior to 4.24.0-lts. It may affect all editor instances that enabled full-page editing mode or enabled CDATA...

6.1CVSS6.1AI score0.00706EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/02/07 3:14 p.m.63 views

CVE-2024-24815 CKEditor4 Cross-site scripting (XSS) vulnerability caused by incorrect CDATA detection

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module in versions of CKEditor4 prior to 4.24.0-lts. It may affect all editor instances that enabled full-page editing mode or enabled CDATA...

6.1CVSS5.8AI score0.00706EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/02/07 3:14 p.m.16 views

CVE-2024-24815

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module in versions of CKEditor4 prior to 4.24.0-lts. It may affect all editor instances that enabled full-page editing mode or enabled CDATA...

6.1CVSS6.3AI score0.00706EPSS
Exploits0
RubySec
RubySec
added 2024/02/07 12:0 a.m.10 views

CKEditor cross-site scripting vulnerability in AJAX sample

Affected packages The vulnerability has been discovered in the AJAX sample available at the samples/old/ajax.html file location. All integrators that use that sample in the production code can be affected. Impact A potential vulnerability has been discovered in one of CKEditor's 4 samples that ar...

6.1CVSS7.4AI score0.00878EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/02/07 12:0 a.m.5 views

PT-2024-1942 · Unknown +3 · Ckeditor 4 +3

Name of the Vulnerable Software and Affected Versions: CKEditor 4 versions prior to 4.24.0-lts Description: A cross-site scripting vulnerability has been discovered in CKEditor 4, affecting versions prior to 4.24.0-lts that use the preview feature. This vulnerability allows an attacker to execute...

6.4CVSS7AI score0.01652EPSS
Exploits0References36
Rows per page
Query Builder