Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:54 p.m.6 views

CVE-2020-9440

A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...

6.1CVSS5.6AI score0.01278EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/03/29 12:0 a.m.32 views

Fedora: Security Advisory for ckeditor (FEDORA-2020-a832c215bf)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3AI score
Exploits0References2
OpenVAS
OpenVAS
added 2020/03/29 12:0 a.m.42 views

Fedora: Security Advisory for ckeditor (FEDORA-2020-8d5de93970)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3AI score
Exploits0References2
NVD
NVD
added 2020/03/10 5:15 p.m.19 views

CVE-2020-9440

A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...

6.1CVSS5.9AI score0.01278EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/03/10 5:15 p.m.25 views

CVE-2020-9440

A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...

6.1CVSS6.9AI score0.01278EPSS
Exploits0References2
CVE
CVE
added 2020/03/10 4:57 p.m.72 views

CVE-2020-9440

CVE-2020-9440 is an XSS vulnerability in the CKEditor 4 WSC (WebSpellChecker) plugin up to version 5.5.7.5. The issue allowed remote attackers to inject and execute arbitrary script inside an IFRAME by inserting crafted HTML into the editor. Public references in the connected documents confirm th...

6.1CVSS5.8AI score0.01278EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2020/03/10 4:57 p.m.25 views

CVE-2020-9440

A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...

5.9AI score0.01278EPSS
Exploits0References4
Rows per page
Query Builder