exploitDog

GHSA-8479-rrmq-2rhw

Опубликовано: 28 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal CKEditor 5 Premium Features allows Functionality Bypass.This issue affects CKEditor 5 Premium Features: from 0.0.0 before 1.2.10, from 1.3.0 before 1.3.6, from 1.4.0 before 1.4.3, from 1.5.0 before 1.5.1, from 1.6.0 before 1.6.4.

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal CKEditor 5 Premium Features allows Functionality Bypass.This issue affects CKEditor 5 Premium Features: from 0.0.0 before 1.2.10, from 1.3.0 before 1.3.6, from 1.4.0 before 1.4.3, from 1.5.0 before 1.5.1, from 1.6.0 before 1.6.4.

Ссылки

EPSS

Процентиль: 13%

0.00044

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-288

Связанные уязвимости

CVE-2025-13980

CVSS3: 5.3

nvd

10 дней назад

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal CKEditor 5 Premium Features allows Functionality Bypass.This issue affects CKEditor 5 Premium Features: from 0.0.0 before 1.2.10, from 1.3.0 before 1.3.6, from 1.4.0 before 1.4.3, from 1.5.0 before 1.5.1, from 1.6.0 before 1.6.4.

EPSS

Процентиль: 13%

0.00044

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-288