Description
CKEditor 5 is a JavaScript rich text editor. A cross-site scripting vulnerability has been discovered affecting three optional CKEditor 5's packages in versions prior to 35.0.1. The vulnerability allowed to trigger a JavaScript code after fulfilling special conditions. The affected packages are `@ckeditor/ckeditor5-markdown-gfm`, `@ckeditor/ckeditor5-html-support`, and `@ckeditor/ckeditor5-html-embed`. The specific conditions are 1) Using one of the affected packages. In case of `ckeditor5-html-support` and `ckeditor5-html-embed`, additionally, it was required to use a configuration that allows unsafe markup inside the editor. 2) Destroying the editor instance and 3) Initializing the editor on an element and using an element other than `
Remediation
References
https://github.com/ckeditor/ckeditor5/security/advisories/GHSA-42wq-rch8-6f6j
https://ckeditor.com/docs/ckeditor5/latest/features/markdown.html
https://ckeditor.com/docs/ckeditor5/latest/features/html-embed.html
https://ckeditor.com/docs/ckeditor5/latest/features/general-html-support.html
Related Vulnerabilities
CVE-2017-18635 Vulnerability in npm package @novnc/novnc
CVE-2011-4343 Vulnerability in maven package org.apache.myfaces.core.internal:myfaces-impl-shared
CVE-2021-23330 Vulnerability in npm package launchpad
CVE-2020-7735 Vulnerability in npm package ng-packagr
CVE-2021-20085 Vulnerability in npm package backbone-query-parameters