14
Views
2
Comments
[CK Editor 5] Vulnerability found in the CK Editor JS library
ck-editor-5
Reactive icon
Forge asset by Tiago Ribeiro
Application Type
Reactive

Hi there Tiago,
A vulnerability was found in the recent versions of Ck Editor 5 JS library.

https://nvd.nist.gov/vuln/detail/CVE-2026-28343


Any chance a new version on the JS library can be implemented in your Forge Component?
Thank you

2025-09-25 14-38-22
Lokesh Kumar Yadav

Could you please check whether an updated and patched version of the CKEditor 5 library can be implemented in the Forge component? 

2024-10-15 10-08-31
Tiago Ribeiro
Champion

Hey guys! 

Thank you for the heads up. 

Fortunately this component does not bundle a specific ckeditor version. It only provides instructions on how to create your own build. So, that's up to the consumer to update, no need for a new release from my side. 

That said, I think there's value in creating a new release for awareness and updating the demo to a patched version.

Best regards, 

Tiago

Community GuidelinesBe kind and respectful, give credit to the original source of content, and search for duplicates before posting.