RSS   Vulnerabilities for 'Webspellchecker'   RSS

2020-03-10
 
CVE-2020-9440

CWE-79
 

 
A cross-site scripting (XSS) vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML element into the editor.

 


Copyright 2024, cxsecurity.com

 

Back to Top