Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

ckeditor5 — Vulnerabilities & Security Advisories 7

All 7 CVE vulnerabilities found in ckeditor5, with AI-generated Chinese analysis, references, and POCs.

Vendor: ckeditor

CVE IDTitleCVSSSeverityPaused
CVE-2026-28343 CKEditor: Cross-site scripting (XSS) in the HTML Support package CWE-79 6.4 Medium2026-03-05
CVE-2025-58064 CKEditor is susceptible to Cross-Site Scripting (XSS) through its clipboard package CWE-79 6.1AIMediumAI2025-09-03
CVE-2025-25299 Cross-site scripting (XSS) in the real-time collaboration package CWE-79 6.1 -2025-02-20
CVE-2024-45613 CKEditor 5 has Cross-site Scripting vulnerability in the clipboard package CWE-79 6.1AIMediumAI2024-09-25
CVE-2022-31175 Cross-site scripting caused by the editor instance destroying process in ckeditor5 CWE-79 5.8 Medium2022-08-03
CVE-2021-21391 Regular expression Denial of Service in multiple packages CWE-400 6.5 Medium2021-04-29
CVE-2021-21254 Regular expression Denial of Service in Markdown plugin CWE-400 6.5 Medium2021-01-29

All 7 known CVE vulnerabilities affecting ckeditor5 with full Chinese analysis, references, and POCs where available.