@ckeditor/ckeditor5-upload 44.2.1 on Node.js NPM

We are happy to announce the release of CKEditor 5 v44.2.1.

During a recent internal audit, we identified a cross-site scripting (XSS) vulnerability in the CKEditor 5 real-time collaboration package (CVE-2025-25299). This vulnerability can lead to unauthorized JavaScript code execution and affects user markers, which represent users' positions within the document.

This vulnerability affects only installations with real-time collaborative editing enabled.

You can read more details in the relevant security advisory and contact us if you have more questions.

Bug fixes

comments: Fixed a few scenarios for which creating a new comment thread was impossible (for example, when a selection was made on multiple table cells). This was a regression introduced in v44.2.0.

Other changes

real-time-collaboration: Improved displaying usernames in the user marker.

Released packages

Check out the Versioning policy guide for more information.

Released packages (summary)

Other releases:

@ckeditor/ckeditor5-adapter-ckfinder: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-ai: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-alignment: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-autoformat: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-autosave: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-basic-styles: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-block-quote: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-bookmark: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-build-balloon: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-build-balloon-block: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-build-classic: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-build-decoupled-document: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-build-inline: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-build-multi-root: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-case-change: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-ckbox: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-ckfinder: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-clipboard: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-cloud-services: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-code-block: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-collaboration-core: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-comments: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-core: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-document-outline: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-easy-image: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-editor-balloon: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-editor-classic: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-editor-decoupled: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-editor-inline: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-editor-multi-root: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-emoji: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-engine: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-enter: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-essentials: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-export-pdf: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-export-word: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-find-and-replace: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-font: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-format-painter: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-heading: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-highlight: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-horizontal-line: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-html-embed: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-html-support: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-image: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-import-word: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-indent: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-language: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-link: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-list: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-list-multi-level: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-markdown-gfm: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-media-embed: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-mention: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-merge-fields: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-minimap: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-operations-compressor: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-page-break: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-pagination: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-paragraph: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-paste-from-office: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-paste-from-office-enhanced: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-real-time-collaboration: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-remove-format: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-restricted-editing: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-revision-history: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-select-all: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-show-blocks: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-slash-command: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-source-editing: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-source-editing-enhanced: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-special-characters: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-style: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-table: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-template: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-theme-lark: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-track-changes: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-typing: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-ui: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-undo: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-upload: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-uploadcare: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-utils: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-watchdog: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-widget: v44.2.0 => v44.2.1
@ckeditor/ckeditor5-word-count: v44.2.0 => v44.2.1
ckeditor5-collaboration: v44.2.0 => v44.2.1
ckeditor5-premium-features: v44.2.0 => v44.2.1