PT-2023-22350 · Pandao · Editor.Md

Name of the Vulnerable Software and Affected Versions: pandao editor.md versions 1.5.0 and earlier Description: The issue allows attackers to inject arbitrary web script or HTML via crafted markdown text, which can lead to Cross Site Scripting XSS attacks. This enables attackers to execute...

editor.md 跨站脚本漏洞

Editor.md is an open source embedded online Markdown a markup language editor. A security vulnerability exists in pandao editor.md version 1.5.0 and earlier, which stems from a cross-site scripting XSS vulnerability that allows attackers to inject arbitrary Web script or HTML...

GHSA-X65C-4FGJ-5FC3 Cross-site Scripting in pandao

pandao Editor.md 1.5.0 allows XSS via an attribute of an ABBR or SUP element...