RSS   Vulnerabilities for 'Editor.md'   RSS

2019-08-01
 
CVE-2019-14517

CWE-79
 

 
pandao Editor.md 1.5.0 allows XSS via the Javascript: string.

 
2019-03-12
 
CVE-2019-9737

CWE-79
 

 
Editor.md 1.5.0 has DOM-based XSS via vectors involving the '<EMBED SRC="data:image/svg+xml' substring.

 


Copyright 2024, cxsecurity.com

 

Back to Top