Vulnerabilities (CVE)

Filtered by vendor Ckeditor-wordcount-plugin Project Subscribe
Filtered by product Ckeditor-wordcount-plugin
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-37905 1 Ckeditor-wordcount-plugin Project 1 Ckeditor-wordcount-plugin 2024-02-28 N/A 6.1 MEDIUM
ckeditor-wordcount-plugin is an open source WordCount Plugin for CKEditor. It has been discovered that the `ckeditor-wordcount-plugin` plugin for CKEditor4 is susceptible to cross-site scripting when switching to the source code mode. This issue has been addressed in version 1.17.12 of the `ckeditor-wordcount-plugin` plugin and users are advised to upgrade. There are no known workarounds for this vulnerability.