It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted text into the Styles input of specific dialogs (in the Advanced Tab for Dialogs plugin).
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2022-4431 | It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted text into the Styles input of specific dialogs (in the Advanced Tab for Dialogs plugin). |
![]() |
GHSA-jv4c-7jqq-m34x | CKEditor 4 ReDoS Vulnerability |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T20:19:20.393Z
Reserved: 2021-01-26T00:00:00
Link: CVE-2021-26271

No data.

Status : Modified
Published: 2021-01-26T21:15:12.860
Modified: 2024-11-21T05:56:00.720
Link: CVE-2021-26271

No data.

No data.