Vigilance.fr - CKEditor4: Cross Site Scripting via Iframe Dialog, analyzed on 04/10/2023
December 2023 by Vigilance.fr
An attacker can trigger a Cross Site Scripting of CKEditor4, via Iframe Dialog, in order to run JavaScript code in the context of the web site.
Plus d'information sur : https://vigilance.fr/vulnerability/CKEditor4-Cross-Site-Scripting-via-Iframe-Dialog-42478