Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0630

Malicious code in bioql PyPI...

6.1CVSS6.7AI score0.00706EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-24815

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module i...

6.1CVSS6.6AI score0.00706EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/02/07 5:31 p.m.40 views

CKEditor4 Cross-site Scripting vulnerability in samples with enabled the preview feature

Affected packages The vulnerability has been discovered in the samples that use the preview feature: samples/old//.html plugins/plugin name/samples//.html All integrators that use these samples in the production code can be affected. Impact A potential vulnerability has been discovered in one of...

6.1CVSS6.2AI score0.01652EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2024/02/07 5:30 p.m.181 views

CKEditor4 Cross-site Scripting vulnerability caused by incorrect CDATA detection

Affected packages The vulnerability has been discovered in the core HTML parsing module and may affect all editor instances that: Enabled full-page editing mode, or enabled CDATA elements in Advanced Content Filtering configuration defaults to script and style elements. Impact A potential...

6.1CVSS6.5AI score0.00706EPSS
Exploits0References8Affected Software2
NVD
NVD
added 2024/02/07 5:15 p.m.23 views

CVE-2024-24816

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior to 4.24.0-lts in samples that use the preview feature. All integrators that use these samples in the production code can be affected. The...

6.1CVSS6.1AI score0.01652EPSS
Exploits0References3
Prion
Prion
added 2024/02/07 5:15 p.m.29 views

Cross site scripting

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior to 4.24.0-lts in samples that use the preview feature. All integrators that use these samples in the production code can be affected. The...

5.8CVSS6.2AI score0.01652EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/02/07 4:58 p.m.17 views

CVE-2024-24816 Cross-site scripting (XSS) vulnerability in samples with enabled the preview feature

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability vulnerability has been discovered in versions prior to 4.24.0-lts in samples that use the preview feature. All integrators that use these samples in the production code can be affected. The...

6.1CVSS6.3AI score0.01652EPSS
Exploits0References5
NVD
NVD
added 2024/02/07 4:15 p.m.24 views

CVE-2024-24815

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module in versions of CKEditor4 prior to 4.24.0-lts. It may affect all editor instances that enabled full-page editing mode or enabled CDATA...

6.1CVSS6.1AI score0.00706EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/02/07 3:14 p.m.16 views

CVE-2024-24815

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module in versions of CKEditor4 prior to 4.24.0-lts. It may affect all editor instances that enabled full-page editing mode or enabled CDATA...

6.1CVSS6.3AI score0.00706EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/02/07 12:0 a.m.5 views

PT-2024-1942 · Unknown +3 · Ckeditor 4 +3

Name of the Vulnerable Software and Affected Versions: CKEditor 4 versions prior to 4.24.0-lts Description: A cross-site scripting vulnerability has been discovered in CKEditor 4, affecting versions prior to 4.24.0-lts that use the preview feature. This vulnerability allows an attacker to execute...

6.4CVSS7AI score0.01652EPSS
Exploits0References36
RubySec
RubySec
added 2024/02/07 12:0 a.m.10 views

CKEditor cross-site scripting vulnerability in AJAX sample

Affected packages The vulnerability has been discovered in the AJAX sample available at the samples/old/ajax.html file location. All integrators that use that sample in the production code can be affected. Impact A potential vulnerability has been discovered in one of CKEditor's 4 samples that ar...

6.1CVSS7.4AI score0.00878EPSS
Exploits1References1
Rows per page
Query Builder