Lucene search
GoogleOSV:GHSA-2J5V-FC74-J9Q2HistoryMar 14, 2019 - 3:38 p.m.
Cross-Site Scripting in editor.md
2019-03-1415:38:56
Google
osv.dev
5
EPSS
0.001
Percentile
37.3%
All versions of editor.md are vulnerable to Cross-Site Scripting. User input is insufficiently sanitized, allowing attackers to inject malicious code in payloads containing base64-encoded content.
Recommendation
No fix is currently available. Consider using an alternative module until a fix is made available.
Related
osv
osv
CVE-2019-9737
2019-03-13 02:29:00
github
github
Cross-Site Scripting in editor.md
2019-03-14 15:38:56
nvd
nvd
CVE-2019-9737
2019-03-13 02:29:00
prion
prion
Design/Logic Flaw
2019-03-13 02:29:00
nodejs
nodejs
Cross-Site Scripting
2019-04-02 19:38:50
cve
cve
CVE-2019-9737
2019-03-13 02:29:00
veracode
veracode
Cross-site Scripting (XSS)
2019-03-14 09:40:40
cvelist
cvelist
CVE-2019-9737
2019-03-13 02:00:00