CVE-2024-37888 | mlewand ckeditor-plugin-openlink up to 1.0.4 cross site scripting

Inserito da Angelo Barbosa | Giu 14, 2024 | CVE

A vulnerability was found in mlewand ckeditor-plugin-openlink up to 1.0.4 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-37888. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37888 | mlewand ckeditor-plugin-openlink up to 1.0.4 cross site scripting

Post correlati

CVE-2024-23501 | Shopfiles Ebook Store Plugin up to 5.788 on WordPress cross site scripting

CVE-2024-28860 | Cilium up to 1.13.14/1.14.8/1.15.2 ESP Sequence Number inadequate encryption (GHSA-pwqm-x5x6-5586)

CVE-2023-42839 | Apple tvOS App state issue

CVE-2023-4538 | Comarch ERP XL up to 2023.2 Installation insufficiently protected credentials