CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

OSV•added 2026/01/16 7:16 p.m.•1 views

CVE-2021-47836

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads to execute remote commands and potentially gain system access...

5.1CVSS5.9AI score0.00019EPSS

Exploits0References4

NVD•added 2026/01/16 7:16 p.m.•1 views

CVE-2021-47836

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS0.00019EPSS

Exploits0References4

CVE•added 2026/01/16 7:9 p.m.•5 views

CVE-2021-47836

Markdown Explorer 0.1.1 is affected by a persistent cross-site scripting (XSS) vulnerability that allows attackers to upload Markdown files with embedded JavaScript to execute remote commands and potentially gain system access. Root cause is XSS via file uploads/editor inputs. Public exploits are...

6.1CVSS5.8AI score0.00019EPSS

Exploits0References4

Cvelist•added 2026/01/16 7:9 p.m.•18 views

CVE-2021-47836 Markdown Explorer 0.1.1 - Persistent Cross-Site Scripting

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS0.00019EPSS

Exploits0References4

ATTACKERKB•added 2026/01/16 7:9 p.m.•1 views

CVE-2021-47836

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS6.1AI score0.00019EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/01/16 7:9 p.m.•2 views

CVE-2021-47836 Markdown Explorer 0.1.1 - Persistent Cross-Site Scripting

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS6.1AI score0.00019EPSS

Exploits0References4

Positive Technologies•added 2026/01/16 12:0 a.m.•2 views

PT-2026-3291

6.1CVSS7AI score0.00019EPSS

Exploits0References5

CNNVD•added 2026/01/16 12:0 a.m.•1 views

Markdown Explorer security vulnerabilities

Markdown Explorer is a Markdown document browser developed by jersou. Version 0.1.1 of Markdown Explorer contains a security vulnerability; this vulnerability stems from cross-site scripting in file uploads and editor inputs, which may lead to remote code execution...

6.1CVSS6AI score0.00019EPSS

Exploits0References4

Github Security Blog•added 2022/05/24 5:34 p.m.•54 views

Improper Neutralization of Input During Web Page Generation in CKEditor4

A cross-site scripting XSS vulnerability in the Color Dialog plugin for CKEditor 4.15.0 allows remote attackers to run arbitrary web script after persuading a user to copy and paste crafted HTML code into one of editor inputs...

6.1CVSS6.3AI score0.01007EPSS

Exploits0References8Affected Software1

NVD•added 2020/11/12 9:15 p.m.•21 views

CVE-2020-27193

6.1CVSS7.1AI score0.01007EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by