Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/simditor@2.3.11
purl pkg:npm/simditor@2.3.11
Tags Ghost
Next non-vulnerable version 2.3.22
Latest non-vulnerable version 2.3.22
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-3xnv-amvt-sbd2
Aliases:
CVE-2018-6464
GHSA-p9wj-wrrm-84m5
Cross-site Scripting Simditor allows XSS via crafted use of `svg/onload=alert` in a `TEXTAREA` element.
2.3.18
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-31T00:57:34.761692+00:00 GHSA Importer Affected by VCID-3xnv-amvt-sbd2 https://github.com/advisories/GHSA-p9wj-wrrm-84m5 38.6.0
2026-05-30T20:53:24.167266+00:00 GitLab Importer Affected by VCID-3xnv-amvt-sbd2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/simditor/CVE-2018-6464.yml 38.6.0