Unrated severityNVD Advisory· Published Jan 28, 2026· Updated Jan 29, 2026
CKEditor 5 Premium Features - Moderately critical - Access bypass - SA-CONTRIB-2025-118
CVE-2025-13980
Description
Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal CKEditor 5 Premium Features allows Functionality Bypass.This issue affects CKEditor 5 Premium Features: from 0.0.0 before 1.2.10, from 1.3.0 before 1.3.6, from 1.4.0 before 1.4.3, from 1.5.0 before 1.5.1, from 1.6.0 before 1.6.4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.2.10, >=1.3.0 <1.3.6, >=1.4.0 <1.4.3, >=1.5.0 <1.5.1, >=1.6.0 <1.6.4
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.