@ckeditor/ckeditor5-clipboard

npm2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting @ckeditor/ckeditor5-clipboardpage 1 of 1

CVE-2024-45613MEDIUMCVSS 6.1EG 6.1✓ Fixed in 43.1.1
2024-09-25
CKEditor 5 is a JavaScript rich-text editor. Starting in version 40.0.0 and prior to version 43.1.1, a Cross-Site Scripting (XSS) vulnerability is present in the CKEditor 5 clipboard package. This vulnerability could be triggered by a spec…
CVE-2025-58064NONECVSS 0.0EG 0.0✓ Fixed in 46.0.3
2025-09-04
CKEditor 5 is a modern JavaScript rich-text editor with an MVC architecture. ckeditor5 and ckeditor5-clipboard versions 46.0.0 through 46.0.2 and 44.2.0 through 45.2.1 contain a Cross-Site Scripting (XSS) vulnerability. Ability to exploit …

Check whether @ckeditor/ckeditor5-clipboard is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for @ckeditor/ckeditor5-clipboard CVEs against the assets you own.

Start Free Scan →