You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Advanced Tab for Dialogs plugin (CVE-2021-26271) - ReDoS in the Autolink plugin (CVE-2021-26272) are not being used by the current CKEDITOR 4.3 in the CMS, so we're not vulnerable to any of those CVEs.
For 3.0, we want to implement a newer version (latest 4 or even the CKEDITOR 5). The ideal scenario would be to have the package and plugins being installed with NPM, if that's possible, if not, we need to update a bundle and check if all the custom features ( like our red guideline ) are working for that version.
I am not sure we use these plugins anyway, but good to validate.
OP: https://community.xibo.org.uk/t/security-vulnerability-on-xibo-2-3-8-found/24543
The text was updated successfully, but these errors were encountered: