Important - See this topic CKEditor shows warning message about being insecure for how to continue using CKEditor without the warning being displayed.
@miguelss Thanks for raising this issue. I am the developer of the phplist plugin for ckeditor.
Although the pop-up message is a bit annoying I think that they do have a point about people continuing to use out-dated and insecure versions of their software.
But I think that the way ckeditor is used by phplist is a bit different to other uses. In many cases ckeditor is used by one or only a small number of phplist administrators who are generally going to be trusted in what they do. In a more general use of ckeditor, say a contact form or something similar, it might be used by anonymous people with malicious intent.
In the short term the options seem to be:
-
accept the pop-up message and continue to use the CDN version of ckeditor using a URL similar to
//cdn.ckeditor.com/4.22.1/standard/ckeditor.jsckeditor 4.22.1. seems to be the final version that can be used without buying a long-term support licence. -
install a copy of ckeditor 4 locally. You can download version 4.22.1 and a few earlier versions from CKEditor 4 - Download Latest Version When I tried this, the last version of ckeditor I found that doesn’t show the pop-up is 4.20.2. Then follow the guidance in the plugin documentation plugin:ckeditor [phpList Resources]
ckeditor 5 looks to be substantially different to ckeditor 4 and therefore not trivial to convert the phplist plugin to use that.