RSS   Vulnerabilities for 'Codimd'   RSS

2019-08-23
 
CVE-2019-15499

CWE-79
 

 
CodiMD 1.3.1, when Safari is used, allows XSS via an IFRAME element with allow-top-navigation in the sandbox attribute, in conjunction with a data: URL.

 


Copyright 2024, cxsecurity.com

 

Back to Top