3 matches found
PT-2026-7809
Name of the Vulnerable Software and Affected Versions next-mdx-remote versions 4.3.0 through 5.0.0 Description The serialize function within next-mdx-remote is susceptible to arbitrary code execution because of inadequate sanitization of MDX content. This allows untrusted MDX to execute JavaScrip...
Exploit for Cross-site Scripting in Html-Js Doracms
CVE-2024-28715 CVE ID CVE-2024-28715 PRODUCT Do...
Mermaid 代码注入漏洞
Mermaid is a software application. Create charts and visualizations using text and code. A code injection vulnerability exists in Mermaid versions prior to 1.3.0, prior to 2.0.0-rc1, which can be exploited by an attacker to modify any mermaid block of code with arbitrary code, which will be...