Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.33 views

Ubuntu 16.04 ESM : CKEditor vulnerabilities (USN-5340-2)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5340-2 advisory. USN-5340-1 fixed several vulnerabilities in CKEditor. This update provides the fixes for CVE-2018-9861, CVE-2020-9281, CVE-2021-32809, CVE-2021-33829 and...

7.3CVSS6.6AI score0.04327EPSS
Exploits0References6
Ubuntu
Ubuntu
added 2022/03/23 8:57 a.m.62 views

USN-5340-2: CKEditor vulnerabilities

USN-5340-1 fixed several vulnerabilities in CKEditor. This update provides the fixes for CVE-2018-9861, CVE-2020-9281, CVE-2021-32809, CVE-2021-33829 and CVE-2021-37695 for Ubuntu 16.04 ESM. Original advisory details: Kyaw Min Thein discovered that CKEditor incorrectly handled certain inputs. An...

7.3CVSS7AI score0.04327EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.69 views

Fedora Update for ckeditor FEDORA-2019-ae7f274d24

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.7AI score
Exploits0References2
OpenVAS
OpenVAS
added 2018/05/12 12:0 a.m.39 views

Fedora Update for drupal8 FEDORA-2018-1ba93b3144

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.99993EPSS
Exploits59References4
UbuntuCve
UbuntuCve
added 2018/04/19 5:29 p.m.44 views

CVE-2018-9861

Cross-site scripting XSS vulnerability in the Enhanced Image aka image2 plugin for CKEditor in versions 4.5.10 through 4.9.1; fixed in 4.9.2, as used in Drupal 8 before 8.4.7 and 8.5.x before 8.5.2 and other products, allows remote attackers to inject arbitrary web script through a crafted IMG...

6.1CVSS6.8AI score0.0178EPSS
Exploits0References5
NVD
NVD
added 2018/04/19 5:29 p.m.23 views

CVE-2018-9861

Cross-site scripting XSS vulnerability in the Enhanced Image aka image2 plugin for CKEditor in versions 4.5.10 through 4.9.1; fixed in 4.9.2, as used in Drupal 8 before 8.4.7 and 8.5.x before 8.5.2 and other products, allows remote attackers to inject arbitrary web script through a crafted IMG...

6.1CVSS6.2AI score0.0178EPSS
Exploits0References4
OSV
OSV
added 2018/04/19 5:29 p.m.25 views

CVE-2018-9861

Cross-site scripting XSS vulnerability in the Enhanced Image aka image2 plugin for CKEditor in versions 4.5.10 through 4.9.1; fixed in 4.9.2, as used in Drupal 8 before 8.4.7 and 8.5.x before 8.5.2 and other products, allows remote attackers to inject arbitrary web script through a crafted IMG...

6.1CVSS6.2AI score
Exploits0References4
Cvelist
Cvelist
added 2018/04/19 5:0 p.m.20 views

CVE-2018-9861

Cross-site scripting XSS vulnerability in the Enhanced Image aka image2 plugin for CKEditor in versions 4.5.10 through 4.9.1; fixed in 4.9.2, as used in Drupal 8 before 8.4.7 and 8.5.x before 8.5.2 and other products, allows remote attackers to inject arbitrary web script through a crafted IMG...

6.3AI score0.0178EPSS
Exploits0References4
CVE
CVE
added 2018/04/19 5:0 p.m.118 views

CVE-2018-9861

CVE-2018-9861 is a cross-site scripting (XSS) vulnerability in the Enhanced Image (image2) plugin for CKEditor. Affected versions are CKEditor image2 plugin 4.5.10 through 4.9.1, with a fix in 4.9.2. The vulnerability enables remote attackers to inject arbitrary web script through a crafted IMG e...

6.1CVSS6AI score0.0178EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2018/04/19 12:0 a.m.28 views

Drupal Cross Site Scripting Vulnerability (SA-CORE-2018-003) - Windows

Drupal is prone to a cross-site scripting XSS vulnerability. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

6.1CVSS6.2AI score0.0178EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/04/19 12:0 a.m.32 views

Drupal Cross Site Scripting Vulnerability (SA-CORE-2018-003) - Linux

Drupal is prone to a cross-site scripting XSS vulnerability. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

6.1CVSS6.2AI score0.0178EPSS
Exploits0References1
Rows per page
Query Builder