exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2021-32808

больше 4 лет назад

ckeditor is an open source WYSIWYG HTML editor with rich content support. A vulnerability has been discovered in the clipboard Widget plugin if used alongside the undo feature. The vulnerability allows a user to abuse undo functionality using malformed widget HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version >= 4.13.0. The problem has been recognized and patched. The fix will be available in version 4.16.2.

CVSS3: 7.6

EPSS: Низкий

CVE-2021-32808

больше 4 лет назад

ckeditor is an open source WYSIWYG HTML editor with rich content support. A vulnerability has been discovered in the clipboard Widget plugin if used alongside the undo feature. The vulnerability allows a user to abuse undo functionality using malformed widget HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version >= 4.13.0. The problem has been recognized and patched. The fix will be available in version 4.16.2.

CVSS3: 7.6

EPSS: Низкий

CVE-2021-32808

больше 4 лет назад

ckeditor is an open source WYSIWYG HTML editor with rich content suppo ...

CVSS3: 7.6

EPSS: Низкий

GHSA-6226-h7ff-ch6c

больше 4 лет назад

Widget feature vulnerability allowing to execute JavaScript code using undo functionality

CVSS3: 7.6

EPSS: Низкий

BDU:2022-01665

больше 4 лет назад

Уязвимость плагина Widget и функционала Undo WYSIWYG-редактора CKEditor, позволяющая нарушителю оказать воздействие на целостность данных

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2021-32808 ckeditor is an open source WYSIWYG HTML editor with rich content support. A vulnerability has been discovered in the clipboard Widget plugin if used alongside the undo feature. The vulnerability allows a user to abuse undo functionality using malformed widget HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version >= 4.13.0. The problem has been recognized and patched. The fix will be available in version 4.16.2.	CVSS3: 7.6	1% Низкий	больше 4 лет назад
CVE-2021-32808 ckeditor is an open source WYSIWYG HTML editor with rich content support. A vulnerability has been discovered in the clipboard Widget plugin if used alongside the undo feature. The vulnerability allows a user to abuse undo functionality using malformed widget HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version >= 4.13.0. The problem has been recognized and patched. The fix will be available in version 4.16.2.	CVSS3: 7.6	1% Низкий	больше 4 лет назад
CVE-2021-32808 ckeditor is an open source WYSIWYG HTML editor with rich content suppo ...	CVSS3: 7.6	1% Низкий	больше 4 лет назад
GHSA-6226-h7ff-ch6c Widget feature vulnerability allowing to execute JavaScript code using undo functionality	CVSS3: 7.6	1% Низкий	больше 4 лет назад
BDU:2022-01665 Уязвимость плагина Widget и функционала Undo WYSIWYG-редактора CKEditor, позволяющая нарушителю оказать воздействие на целостность данных	CVSS3: 5.4	1% Низкий	больше 4 лет назад

Уязвимостей на страницу