Lucene search
China National Vulnerability DatabaseCNVD-2022-73494HistoryMar 07, 2022 - 12:00 a.m.
MarkText Cross-Site Scripting Vulnerability
2022-03-0700:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
marktext
cross-site scripting
vulnerability
javascript scheme
remote attacker
arbitrary scripts
security flaw
EPSS
0.001
Percentile
27.8%
MarkText is a simple and elegant Markdown editor with a focus on speed and usability.A cross-site scripting vulnerability exists in versions of MarkText prior to 0.17.0, which stems from improper handling of links (using javascript:scheme) in documents. A remote attacker could exploit this vulnerability to execute arbitrary scripts on the PC of a user using the product.
Related
prion
prion
Cross site scripting
2022-03-10 17:45:00
nvd
nvd
CVE-2022-21158
2022-03-10 17:45:09
cve
cve
CVE-2022-21158
2022-03-10 17:45:09
cvelist
cvelist
CVE-2022-21158
2022-03-07 09:00:35
osv
osv
CVE-2022-21158
2022-03-10 17:45:09
jvn
jvn
JVN#89524240: MarkText vulnerable to cross-site scripting
2022-03-03 00:00:00