Beta

Report

CKEditor 4 LTS - WYSIWYG HTML editor 1.0.0-1.0.0 is vulnerable to Drupal CKEditor 4 LTS - WYSIWYG HTML editor module 1.0.0-1.0.0 - Unauthenticated Cross Site Scripting (XSS) vulnerability

Unauthenticated
Published
2024-02-13

Drupal CKEditor 4 LTS - WYSIWYG HTML editor module 1.0.0-1.0.0 - Unauthenticated Cross Site Scripting (XSS) vulnerability

CVE

https://www.cve.org/CVERecord?id=CVE-2024-24815

CVSS

Score:6.1

Severity:Medium

Version:1.0.0-1.0.0

There is a patch available in v1.0.1 and we strongly recommend you update to this version as soon as possible.