CVE-2018-16330
CVE-2018-16330 affects Pandao Editor.md 1.5.0 and is an XSS vulnerability triggered by crafted attributes of an invalid IMG element. Multiple sources (NVD entry and related advisories) corroborate that enables cross-site scripting in this version. CVSS data indicate base scores: CVSS v2 base 4.3 ...