-
CKEditor 4.11 was released including a XSS fix where an attacker could add invalid HTML markup by switching to the Source mode of CKEditor and back. Used commands: cd Build/ yarn add ckeditor#4.11.1 --dev grunt build Resolves: #84800 Releases: master, 8.7 Security-Commit: 4a44c536a4f80b1fbf4599070761368e7919980c Security-Bulletin: TYPO3-CORE-SA-2018-005 Change-Id: I50412f24393c306a989dac448d7c0ee66a6760fb Reviewed-on: https://review.typo3.org/59099 Reviewed-by:
Oliver Hader <oliver.hader@typo3.org> Tested-by:
6959fc7c
This project manages its dependencies using Yarn.
Learn more