CVE-2014-5191 Information

Description

Cross-site scripting (XSS) vulnerability in the Preview plugin before 4.4.3 in CKEditor allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://ckeditor.com/node/136981 http://secunia.com/advisories/60036 http://www.securityfocus.com/bid/69161