Security Advisory

CVE-2023-37905

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-21 19:35:49

Last updated 2024-10-21 13:07:15

Assigner GitHub_M

State PUBLISHED

Description

ckeditor-wordcount-plugin is an open source WordCount Plugin for CKEditor. It has been discovered that the `ckeditor-wordcount-plugin` plugin for CKEditor4 is susceptible to cross-site scripting when switching to the source code mode. This issue has been addressed in version 1.17.12 of the `ckeditor-wordcount-plugin` plugin and users are advised to upgrade. There are no known workarounds for this vulnerability.

← Browse all CVEs View on cve.org ↗