Mark Text Cross-Site Scripting Vulnerability (CNVD-2022-21485)

Mark Text is a Markdown editor built on Electron for individual developers. v0.16.3 of Mark Text contains a security vulnerability that could be exploited to execute remote code by injecting a crafted payload into /lib/contentState/pasteCtrl.js...

CVE-2022-25069

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

CVE-2022-25069

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

Cross site scripting

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

CVE-2022-25069

Mark Text v0.16.3 contains a DOM-based XSS vulnerability in /lib/contentState/pasteCtrl.js that can lead to remote code execution (RCE). Root cause: DOM-based XSS in pasteCtrl.js allows crafted payloads to be executed. Impact: high/critical (CVSS3.1 base score 9.6) with network access and user in...

CVE-2022-25069

Mark Text v0.16.3 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to perform remote code execution RCE via injecting a crafted payload into /lib/contentState/pasteCtrl.js...

Mark Text 跨站脚本漏洞

Mark Text is a Markdown editor built on Electron for individual developers. v0.16.3 of Mark Text contains a security vulnerability that could be exploited to execute remote code by injecting a crafted payload into /lib/contentState/pasteCtrl.js...