Drupal CKEditor versions 3.0 through 3.6.2 suffer from a persistent cross site scripting vulnerability that can be triggered by the addition of an event handler.
93acfce42fd57f2a4a004f9adac2686bf97ded904556c3a836bf23f10d5f3868
© 2022 Packet Storm. All rights reserved.