ckeditor-wordcount-plugin is an open source WordCount Plugin for CKEditor. It has been discovered that the `ckeditor-wordcount-plugin` plugin for CKEditor4 is susceptible to cross-site scripting when switching to the source code mode. This issue has been addressed in version 1.17.12 of the `ckeditor-wordcount-plugin` plugin and users are advised to upgrade. There are no known workarounds for this vulnerability.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-07-21T19:35:49.656Z
Updated: 2023-09-15T18:24:18.068Z
Reserved: 2023-07-10T17:51:29.610Z
Link: CVE-2023-37905
JSON object: View
NVD Information
Status : Modified
Published: 2023-07-21T20:15:16.297
Modified: 2023-09-15T19:15:09.033
Link: CVE-2023-37905
JSON object: View
Redhat Information
No data.
CWE