VulnerableCode Package Details - pkg:npm/ckeditor@4.18.0

Search for packages

Package details: pkg:npm/ckeditor@4.18.0

Essentials
History (1)

purl	pkg:npm/ckeditor@4.18.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-xgxf-ad4q-5kaq	CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. CKEditor4 prior to version 4.18.0 contains a vulnerability in the `dialog` plugin. The vulnerability allows abuse of a dialog input validator regular expression, which can cause a significant performance drop resulting in a browser tab freeze. A patch is available in version 4.18.0. There are currently no known workarounds.	CVE-2022-24729 GHSA-f6rf-9m92-x2hh

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-01T18:12:50.129291+00:00	GitLab Importer	Fixing	VCID-xgxf-ad4q-5kaq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ckeditor/CVE-2022-24729.yml	36.1.3