Summary: CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source-mode paste.Published: Wednesday, November 14, 2018 - 15:29cvss: