Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-4771

Опубликовано: 16 нояб. 2023
Источник: debian
EPSS Средний

Описание

A Cross-Site scripting vulnerability has been found in CKSource CKEditor affecting versions 4.15.1 and earlier. An attacker could send malicious javascript code through the /ckeditor/samples/old/ajax.html file and retrieve an authorized user's information.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
ckeditorunfixedpackage

Примечания

  • Seems bogus, only affects an example

EPSS

Процентиль: 96%
0.2231
Средний

Связанные уязвимости

ubuntu логотип

CVE-2023-4771

CVSS3: 6.1
ubuntu
около 2 лет назад

A Cross-Site scripting vulnerability has been found in CKSource CKEditor affecting versions 4.15.1 and earlier. An attacker could send malicious javascript code through the /ckeditor/samples/old/ajax.html file and retrieve an authorized user's information.

nvd логотип

CVE-2023-4771

CVSS3: 6.1
nvd
около 2 лет назад

A Cross-Site scripting vulnerability has been found in CKSource CKEditor affecting versions 4.15.1 and earlier. An attacker could send malicious javascript code through the /ckeditor/samples/old/ajax.html file and retrieve an authorized user's information.

github логотип

GHSA-wh5w-82f3-wrxh

CVSS3: 6.1
github
почти 2 года назад

CKEditor cross-site scripting vulnerability in AJAX sample

EPSS

Процентиль: 96%
0.2231
Средний