Skip to main content

Webspellchecker

1 CVEs product

Monthly

CVE-2020-9440 MEDIUM This Month

A cross-site scripting (XSS) vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ckeditor Webspellchecker Fedora
NVD
CVSS 3.1
6.1
EPSS
1.3%
EPSS 1% CVSS 6.1
MEDIUM This Month

A cross-site scripting (XSS) vulnerability in the WSC plugin through 5.5.7.5 for CKEditor 4 allows remote attackers to run arbitrary web script inside an IFRAME element by injecting a crafted HTML. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ckeditor Webspellchecker +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy