2025-11-07 00:00:00
mitre
PUBLISHED
A reflected cross-site scripting (XSS) vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a users browser via injecting a crafted payload.