CVE-2025-6674 | CKEditor5 Youtube up to 1.0.2 on Drupal cross site scripting (sa-contrib-2025-081)

A vulnerability classified as problematic was found in CKEditor5 Youtube up to 1.0.2 on Drupal. This vulnerability affects unknown code. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2025-6674. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More