Task #11475: PENTEST - ckeditor 4.8.0 - BSN CDB Support - Penril Support System

Task #11475

Support #11289: [SCP ID :##5584##] : PCI DSS: Web and Mobile SAP Remediation

Task #11407: Pentest_Web_CDB (H2) - Using Components with Known Vulnerabilities

PENTEST - ckeditor 4.8.0

Added by Nurul Athira Abdul Rahim over 3 years ago. Updated about 3 years ago.

Status:

Work Completed-End life cycle

Start date:

January 07, 2021

Priority:

Normal

Due date:

Assignee:

Nurul Athira Abdul Rahim

% Done:

100%

Category:

Pentest

Spent time:

Target version:

Description

ckeditor 4.8.0
The library ckeditor version 4.8.0 has known security issues. For more information, visit these websites:
https://ckeditor.com/blog/CKEditor-4.9.2-with-a-security-patch-released/
https://ckeditor.com/cke4/release-notes

WhatsApp Image 2021-03-04 at 1.29.39 PM.jpeg (77.2 KB) Erni Suhaireen Zulkifli, March 04, 2021 15:15

WhatsApp Image 2021-03-04 at 1.21.04 PM.jpeg (73.4 KB) Erni Suhaireen Zulkifli, March 04, 2021 15:15

History

#1 Updated by Ngoh Chee Ping over 3 years ago

Assignee changed from Najmi Pasarudin to Lai Wen Hong

Please help to finish this task.

#2 Updated by Lai Wen Hong over 3 years ago

Status changed from New - Begin Life Cycle to Code Review
Assignee changed from Lai Wen Hong to Ngoh Chee Ping
% Done changed from 0 to 100

#3 Updated by Lai Wen Hong over 3 years ago

Status changed from Code Review to New - Begin Life Cycle
Assignee changed from Ngoh Chee Ping to Lai Wen Hong
% Done changed from 100 to 50

#4 Updated by Lai Wen Hong over 3 years ago

Status changed from New - Begin Life Cycle to Code Review
Assignee changed from Lai Wen Hong to Ngoh Chee Ping
% Done changed from 50 to 100

Updated ckeditor version to 4.16.0 in CDB.

#5 Updated by Ngoh Chee Ping over 3 years ago

Assignee changed from Ngoh Chee Ping to Nurul Hasnieza Bt Mohd Zamri

After code reviewed, no issue. Please help to deploy for internal test.

#6 Updated by Nurul Hasnieza Bt Mohd Zamri over 3 years ago

Status changed from Code Review to Internal Testing
Assignee changed from Nurul Hasnieza Bt Mohd Zamri to Nurul Athira Abdul Rahim

Done SIT deployment. Kindly retest.

#7 Updated by Erni Suhaireen Zulkifli over 3 years ago

File WhatsApp Image 2021-03-04 at 1.29.39 PM.jpeg added
File WhatsApp Image 2021-03-04 at 1.21.04 PM.jpeg added
Status changed from Internal Testing to System Integration Test

ckeditor has been upgrade to version 4.16 at server SIT

#8 Updated by Nurul Athira Abdul Rahim about 3 years ago

Status changed from System Integration Test to Work Completed-End life cycle

Pending for 2nd scanning report

Also available in: Atom PDF

B - Production Support » BSN CDB Support

Issues