Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/16 7:9 p.m.4 views

CVE-2021-47840

Moeditor 0.2.0 contains a persistent cross-site scripting vulnerability that allows attackers to store malicious payloads within markdown files. Attackers can upload specially crafted markdown files with embedded JavaScript that execute when opened, potentially enabling remote code execution on t...

7.2CVSS6.1AI score0.00409EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/16 7:9 p.m.3 views

CVE-2021-47837 Markdownify 1.2.0 - Persistent Cross-Site Scripting

Markdownify 1.2.0 contains a persistent cross-site scripting vulnerability that allows attackers to store malicious payloads within markdown files. Attackers can upload crafted markdown files with embedded scripts that execute when the file is opened, potentially enabling remote code execution...

7.2CVSS7.1AI score0.00409EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.4 views

PT-2026-3297

StudyMD 0.3.2 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts into markdown files. Attackers can upload crafted markdown files with embedded JavaScript payloads that execute when the file is opened, potentially enabling remote code...

7.2CVSS7.4AI score0.00409EPSS
Exploits0References5
OSV
OSV
added 2024/05/01 7:15 p.m.1 views

CVE-2024-33300

Typora v1.0.0 through v1.7 version below Markdown editor has a cross-site scripting XSS vulnerability, which allows attackers to execute arbitrary code by uploading Markdown files...

7.3CVSS6AI score
Exploits0References1
Rows per page
Query Builder