10 matches found
EUVD-2020-30260
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-9440
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME...
CVE-2020-9440
A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...
CKEditor WSC Plugin Cross-Site Scripting Vulnerability
CKEditor is an open source, web-based text editor. A cross-site scripting vulnerability exists in WSC 5.5.7.5 and earlier versions of CKEditor 4, which stems from the plugin incorrectly validating user-supplied input. The vulnerability can be exploited to run arbitrary web scripts with the help o...
CVE-2020-9440
A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...
CVE-2020-9440
A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...
Cross site scripting
A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...
UBUNTU-CVE-2020-9440
A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...
CVE-2020-9440
A cross-site scripting XSS vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor...
CVE-2020-9440
CVE-2020-9440 is an XSS vulnerability in the CKEditor 4 WSC (WebSpellChecker) plugin up to version 5.5.7.5. The issue allowed remote attackers to inject and execute arbitrary script inside an IFRAME by inserting crafted HTML into the editor. Public references in the connected documents confirm th...