A vulnerability was found in CKEditor4 up to 4.16.x and classified as problematic. This issue affects an unknown code of the component HTML Processing Module. Upgrading to version 4.17.0 eliminates this vulnerability. The upgrade is hosted for download at github.com.
CKEditor4 up to 4.16.x HTML Processing Module cross site scripting
- Virtual Patching
- November 18, 2021
- 11:11 am
Contact us to get started
CVE-2022-32405 : SOURCECODESTER PRISON MANAGEMENT SYSTEM 1.0 VIEW_PRISON.PHP ID SQL INJECTION
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
CVE-2022-20651 : CISCO ADAPTIVE SECURITY DEVICE MANAGER LOG FILE
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker
CVE-2022-32549 : APACHE SLING COMMONS LOG/SLING API NEUTRALIZATION FOR LOGS
Description Apache Sling Commons Log