Lucene search

K

CVE-2020-26287

🗓️ 29 Dec 2020 00:12:15Reported by GitHub_MType 
cve
 cve
🔗 web.nvd.nist.gov👁 56 Views

HedgeDoc 1.7.1 allows injection of arbitrary script tags via mermaid diagrams, allowing potential execution of arbitrary JavaScript on page load

Show more
Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
CNVD
Hedgedoc Cross-Site Scripting Vulnerability
30 Dec 202000:00
cnvd
Cvelist
CVE-2020-26287 Stored XSS in mermaid diagrams
28 Dec 202023:30
cvelist
Prion
Design/Logic Flaw
29 Dec 202000:15
prion
NVD
CVE-2020-26287
29 Dec 202000:15
nvd
OSV
CVE-2020-26287
29 Dec 202000:15
osv
Nvd
Vulners
Node
hedgedochedgedocRange<1.7.1
[
  {
    "product": "hedgedoc",
    "vendor": "hedgedoc",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.7.1"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo