CVE-2018-9861
CVE-2018-9861 is a cross-site scripting (XSS) vulnerability in the Enhanced Image (image2) plugin for CKEditor. Affected versions are CKEditor image2 plugin 4.5.10 through 4.9.1, with a fix in 4.9.2. The vulnerability enables remote attackers to inject arbitrary web script through a crafted IMG e...