Full title: CKEditor 4.0.1 CSRF / XSS / Path Disclosure Vulnerabilities 
Category: web applications
Platform: php
CKEditor version 4.0.1 suffers from cross site request forgery, cross site scripting, and path disclosure vulnerabilities.

# 0day.today @ http://0day.today/