Mosipov

**Name of the Vulnerable Software and Affected Versions** FCKeditor.Java version 2.4 **Description** The issue allows remote attackers to cause a denial of service, resulting in an infinite loop. This can be achieved by sending a malformed request parameter that contains `ctrl` characters. **Recommendations** For FCKeditor.Java version 2.4, consider restricting or validating user input to prevent the inclusion of `ctrl` characters in request parameters as a temporary workaround until a patch is available.