exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2022-24728

почти 4 года назад

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4 prior to version 4.18.0. The vulnerability allows someone to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. This problem has been patched in version 4.18.0. There are currently no known workarounds.

CVSS3: 5.4

EPSS: Низкий

CVE-2022-24728

почти 4 года назад

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4 prior to version 4.18.0. The vulnerability allows someone to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. This problem has been patched in version 4.18.0. There are currently no known workarounds.

CVSS3: 5.4

EPSS: Низкий

CVE-2022-24728

почти 4 года назад

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...

CVSS3: 5.4

EPSS: Низкий

GHSA-4fc4-4p5g-6w89

почти 4 года назад

Cross-site Scripting in CKEditor4

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-24728 CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4 prior to version 4.18.0. The vulnerability allows someone to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. This problem has been patched in version 4.18.0. There are currently no known workarounds.	CVSS3: 5.4	0% Низкий	почти 4 года назад
CVE-2022-24728 CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4 prior to version 4.18.0. The vulnerability allows someone to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. This problem has been patched in version 4.18.0. There are currently no known workarounds.	CVSS3: 5.4	0% Низкий	почти 4 года назад
CVE-2022-24728 CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...	CVSS3: 5.4	0% Низкий	почти 4 года назад
GHSA-4fc4-4p5g-6w89 Cross-site Scripting in CKEditor4	CVSS3: 5.4	0% Низкий	почти 4 года назад

Уязвимостей на страницу