[MEDIUM] Code Snippet GeSHi plugin in CKEditor 4 has reflected cross-site scripting (XSS) vulnerability

PKSA-sd3x-9jwt-jn4s CVE-2024-43407 GHSA-7r32-vfj5-c2jv

Affected package: ckeditor/ckeditor

Affected version: <4.25.0

Reported by:
GitHub