FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 03:12:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
33174280-43fa-11e8-aad5-6cf0497db129	drupal -- Drupal core - Moderately critical The Drupal security team reports: CKEditor, a third-party JavaScript library included in Drupal core, has fixed a cross-site scripting (XSS) vulnerability. The vulnerability stemmed from the fact that it was possible to execute XSS inside CKEditor when using the image2 plugin (which Drupal 8 core also uses). Discovery 2018-04-18 Entry 2018-04-19 drupal8 < 8.5.2 https://www.drupal.org/sa-core-2018-003

VuXML ID

Description

33174280-43fa-11e8-aad5-6cf0497db129

drupal -- Drupal core - Moderately critical

The Drupal security team reports:

CKEditor, a third-party JavaScript library included in Drupal core, has fixed a cross-site scripting (XSS) vulnerability. The vulnerability stemmed from the fact that it was possible to execute XSS inside CKEditor when using the image2 plugin (which Drupal 8 core also uses).

Discovery 2018-04-18
Entry 2018-04-19
drupal8

< 8.5.2

https://www.drupal.org/sa-core-2018-003