Security Advisory

CVE-2024-37888

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-14 17:17:26

Last updated 2024-08-02 03:57:40

Assigner GitHub_M

State PUBLISHED

Description

The Open Link is a CKEditor plugin, extending context menu with a possibility to open link in a new tab. The vulnerability allowed to execute JavaScript code by abusing link href attribute. It affects all users using the Open Link plugin at version < **1.0.5**.

← Browse all CVEs View on cve.org ↗