User-Assisted XSS Vulnerability in CKEditor 4.x before 4.11.0

User-Assisted XSS Vulnerability in CKEditor 4.x before 4.11.0

CVE-2018-17960 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source-mode paste.

Learn more about our User Device Pen Test.