plugin.js in the w8tcha oEmbed plugin before 2019-03-14 for CKEditor mishandles SCRIPT elements.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-19,
Products Affected