npm package

@ckeditor/ckeditor5-link

pkg:npm/%40ckeditor/ckeditor5-link

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2018-11093		—		>= 0.3.0, < 10.0.1	10.0.1	May 22, 2018	Cross-site scripting (XSS) vulnerability in the Link package for CKEditor 5 before 10.0.1 allows remote attackers to inject arbitrary web script through a crafted href attribute of a link (A) element.

CVE-2018-11093May 22, 2018
affected >= 0.3.0, < 10.0.1fixed 10.0.1
Cross-site scripting (XSS) vulnerability in the Link package for CKEditor 5 before 10.0.1 allows remote attackers to inject arbitrary web script through a crafted href attribute of a link (A) element.