3 matches found
CVE-2021-20745
Inkdrop versions prior to v5.3.1 allows an attacker to execute arbitrary OS commands on the system where it runs by loading a file or code snippet containing an invalid iframe into Inkdrop...
CVE-2021-20745
Inkdrop (Markdown editor) is affected by CVE-2021-20745. Prior to v5.3.1, loading a file or code snippet containing an invalid iframe can lead to OS command injection, allowing arbitrary commands on the host. The vulnerability is tied to input handling of iframes. According to sources, affected v...
CVE-2021-20745
Inkdrop versions prior to v5.3.1 allows an attacker to execute arbitrary OS commands on the system where it runs by loading a file or code snippet containing an invalid iframe into Inkdrop...