3 matches found
Stored XSS
Overview Affected versions of this package are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to arbitrary script execution in the...
PlantUML 跨站脚本漏洞
PlantUML is a component that allows rapid authoring. for generating diagrams from text descriptions. A cross-site scripting vulnerability exists in PlantUML versions prior to 1.2022.4 that stems from the ability to embed SVG images in diagrams...
CVE-2019-14954
JetBrains IntelliJ IDEA before 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection...