CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6 matches found

OSV•added 2022/03/05 1:15 a.m.•10 views

CVE-2022-25069

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

9.6CVSS7AI score

Exploits0References2

ATTACKERKB•added 2022/03/05 1:15 a.m.•3 views

CVE-2022-25069

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

9.6CVSS7.7AI score0.01335EPSS

Exploits1References3

Prion•added 2022/03/05 1:15 a.m.•12 views

Cross site scripting

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

6.8CVSS8.6AI score0.01335EPSS

Exploits1References2Affected Software1

CVE•added 2022/03/05 12:29 a.m.•92 views

CVE-2022-25069

Mark Text v0.16.3 contains a DOM-based XSS vulnerability in /lib/contentState/pasteCtrl.js that can lead to remote code execution (RCE). Root cause: DOM-based XSS in pasteCtrl.js allows crafted payloads to be executed. Impact: high/critical (CVSS3.1 base score 9.6) with network access and user in...

9.6CVSS8.8AI score0.01335EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/03/05 12:29 a.m.•16 views

CVE-2022-25069

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

9AI score0.01335EPSS

Exploits1References2

CNNVD•added 2022/03/05 12:0 a.m.•1 views

Mark Text 跨站脚本漏洞

Mark Text is a Markdown editor built on Electron for individual developers. v0.16.3 of Mark Text contains a security vulnerability that could be exploited to execute remote code by injecting a crafted payload into /lib/contentState/pasteCtrl.js...

9.6CVSS6.2AI score0.01335EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by