Vigil@nce - Vigil@nce - CKEditor: Cross Site Scripting via HTML Comments, analyzed on 18/11/2021
January 2022 by Vigil@nce
Vigil@nce - An attacker can trigger a Cross Site Scripting of CKEditor, via HTML Comments, in order to run JavaScript code in the context of the web site.
Plus d'information sur : https://vigilance.fr/vulnerability/CKEditor-Cross-Site-Scripting-via-HTML-Comments-36917