| Release | Version |
|---|---|
| bullseye | 3.6.6.1+dfsg-7 |
| bookworm | 3.6.6.1+dfsg-7 |
| Bug | bullseye | bookworm | Description |
|---|---|---|---|
| CVE-2024-24815 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ... |
| CVE-2023-28439 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ... |
| CVE-2022-24728 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ... |
| CVE-2021-41165 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | CKEditor4 is an open source WYSIWYG HTML editor. In affected version a ... |
| CVE-2021-33829 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | A cross-site scripting (XSS) vulnerability in the HTML Data Processor ... |
| CVE-2014-5191 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | Cross-site scripting (XSS) vulnerability in the Preview plugin before ... |
| Bug | bullseye | bookworm | Description |
|---|---|---|---|
| CVE-2024-24816 | vulnerable | vulnerable | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ... |
| CVE-2018-17960 | vulnerable | vulnerable | CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source ... |
| Bug | Description |
|---|---|
| CVE-2024-45613 | CKEditor 5 is a JavaScript rich-text editor. Starting in version 40.0. ... |
| CVE-2022-24729 | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ... |
| CVE-2021-41164 | CKEditor4 is an open source WYSIWYG HTML editor. In affected versions ... |
| CVE-2021-37695 | ckeditor is an open source WYSIWYG HTML editor with rich content suppo ... |
| CVE-2021-26272 | It was possible to execute a ReDoS-type attack inside CKEditor 4 befor ... |
| CVE-2021-26271 | It was possible to execute a ReDoS-type attack inside CKEditor 4 befor ... |