Known Vulnerabilities for Ckeditor 5 by Ckeditor
Listed below are 1 of the newest known vulnerabilities associated with "Ckeditor 5" by "Ckeditor".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58451 json | Horde IMP before 7.0.1 contains a path traversal vulnerability in lib/Compose.php that allows authenticated attackers to read... | Not Provided | 2026-07-01 | 2026-07-02 |
| CVE-2026-41524 json | Brave CMS is an open-source CMS. Prior to commit 6c56603, page and article body content entered through the CKEditor rich-tex... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2023-31541 json | A unrestricted file upload vulnerability was discovered in the ‘Browse and upload images’ feature of the CKEditor v1.2.3 ... | Not Provided | 2023-06-13 | 2026-07-09 |
| CVE-2022-42116 json | A Cross-site scripting (XSS) vulnerability in the Frontend Editor module's integration with CKEditor in Liferay Portal 7.3.2 ... | Not Provided | 2022-10-18 | 2026-07-04 |
| CVE-2021-21254 json | CKEditor 5 is an open source rich text editor framework with a modular architecture. The CKEditor 5 Markdown plugin (@ckedito... | 6.5 - MEDIUM | 2021-01-29 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ckeditor | Ckeditor 5 | 10.0.1 |