CVE-2024-39150

vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet...

CVE-2022-0341

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.12...

CVE-2021-32855

Vditor is a browser-side Markdown editor. Versions prior to 3.8.7 are vulnerable to copy-paste cross-site scripting XSS. For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. Version 3.8.7 contains a patch for this issue...

CVE-2024-39150

vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet...

CVE-2024-39150

vditor, version 3.9.8 and earlier, is vulnerable to an Arbitrary file read via a crafted data packet. The issue is confirmed across multiple sources (NVD/Red Hat/CVE ecosystem). Affected component: vditor (frontend/Markdown editor). Root cause details are not explicitly provided in the extracted ...

vditor Security Vulnerabilities

Vditor is a browser-side Markdown editor by the individual developer Vanessa219. A security vulnerability exists in vditor 3.9.8 and earlier versions, which stems from vulnerability to reading arbitrary files via a crafted packet...

PT-2023-12187 · Vditor · Vditor

Name of the Vulnerable Software and Affected Versions: Vditor versions prior to 3.8.7 Description: Vditor is a browser-side Markdown editor. The issue at hand is a copy-paste cross-site scripting XSS problem. For this particular type of XSS, the victim needs to be fooled into copying a malicious...

@cao_steven/nb-core (=1.0.0), @dcodegroup-au/dsg-vue (>=0.0.17 <=0.0.18) +77 more potentially affected by CVE-2022-0350 via vditor (>=2.3.1 <=3.3.9)

vditor NPM version =2.3.1, =0.0.17, =2.1.5, =2.1.5, =2.1.5, =2.1.5, =0.0.1, =0.0.2, =0.0.1-beta.15, =0.0.1, =0.0.0, =1.0.0, =3.0.0, =3.0.0, =3.2.1 and more Source cves: CVE-2022-0350 Source advisory: OSV:GHSA-689X-X68P-FPH3...

@cao_steven/nb-core (=1.0.0), @dcodegroup-au/dsg-vue (>=0.0.17 <=0.0.18) +77 more potentially affected by CVE-2022-0341 via vditor (>=2.3.1 <=3.3.9)

vditor NPM version =2.3.1, =0.0.17, =2.1.5, =2.1.5, =2.1.5, =2.1.5, =0.0.1, =0.0.2, =0.0.1-beta.15, =0.0.1, =0.0.0, =1.0.0, =3.0.0, =3.0.0, =3.2.1 and more Source cves: CVE-2022-0341 Source advisory: OSV:GHSA-PQ37-4C4G-V38C...

@cao_steven/nb-core (=1.0.0), @dcodegroup-au/dsg-vue (>=0.0.17 <=0.0.18) +77 more potentially affected by CVE-2021-4103 via vditor (>=2.3.1 <=3.3.9)

vditor NPM version =2.3.1, =0.0.17, =2.1.5, =2.1.5, =2.1.5, =2.1.5, =0.0.1, =0.0.2, =0.0.1-beta.15, =0.0.1, =0.0.0, =1.0.0, =3.0.0, =3.0.0, =3.2.1 and more Source cves: CVE-2021-4103 Source advisory: OSV:GHSA-CXM3-V4MV-6MH8...