EPSS
Percentile
21.4%
ShowDoc is vulnerable to stored cross-site scripting through file upload in versions 2.10.3 and prior. A patch is available and anticipated to be part of version 2.10.4.
github.com/star7th/showdoc
github.com/star7th/showdoc/commit/42c0d9813df3035728b36116a6ce9116e6fa8ed3
huntr.dev/bounties/6127739d-f4f2-44cd-ae3d-e3ccb7f0d7b5
nvd.nist.gov/vuln/detail/CVE-2022-0937