EPSS
Percentile
21.4%
ShowDoc is vulnerable to stored cross-site scripting due to unrestricted file upload in versions 2.10.3 and prior. A patch is available and anticipated to be part of version 2.10.4.
github.com/star7th/showdoc
github.com/star7th/showdoc/commit/78522520892d4e29cc94148c6ec84a204a607b73
huntr.dev/bounties/856bd2e2-db4f-4b7d-9927-222261ae3782
nvd.nist.gov/vuln/detail/CVE-2022-0940