Loading
Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to inject arbitrary web script or HTML via components in the samples (aka _samples) directory.
Cite this page
CVE-2009-2324. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2009-2324
Use CWE-79, Fckeditor vendor hub and Fckeditor product page to widen CVE-2009-2324 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2009-2265, CVE-2008-6178 and CVE-2006-0921 for nearby disclosures in the same product family.