Vigilance Vulnerability Alerts - CKEditor: Cross Site Scripting via Core HTML Parsing Module, analyzed on 15/02/2024
April 2024 by Vigilance.fr
An attacker can trigger a Cross Site Scripting of CKEditor, via Core HTML Parsing Module, in order to run JavaScript code in the context of the web site.
Plus d'information sur : https://vigilance.fr/vulnerability/CKEditor-Cross-Site-Scripting-via-Core-HTML-Parsing-Module-43552