CVE-2018-17960

CVE-2018-17960

CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source-mode paste.

Source: CVE-2018-17960