Lucene search
Veracode Vulnerability DatabaseVERACODE:29758HistoryMar 19, 2021 - 1:30 a.m.
Cross-site Scripting (XSS)
2021-03-1901:30:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
29.4%
qiita-markdown is vulnerable to cross-site scripting (XSS). The vulnerability exists through the value of port in url where it allows strings like javascript://docs.google.com:80/%0d%0aalert(document.domain) to be executed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| qiita-markdown | le | 0.32.0 |
Related
prion
prion
Cross site scripting
2021-03-18 16:15:00
Design/Logic Flaw
2021-06-21 13:15:00
cvelist
cvelist
CVE-2021-28796
2021-03-18 15:05:34
CVE-2021-28833
2021-06-21 12:18:38
cve
cve
CVE-2021-28796
2021-03-18 16:15:15
CVE-2021-28833
2021-06-21 13:15:08
osv
osv
CVE-2021-28796
2021-03-18 16:15:15
Cross-Site Scripting in Qiita-Markdown
2021-08-02 17:23:39
qiita-markdown Cross-site Scripting vulnerability
2021-08-02 17:22:07
nvd
nvd
CVE-2021-28796
2021-03-18 16:15:15
CVE-2021-28833
2021-06-21 13:15:08
github
github
Cross-Site Scripting in Qiita-Markdown
2021-08-02 17:23:39
qiita-markdown Cross-site Scripting vulnerability
2021-08-02 17:22:07
rubygems
rubygems
XSS in qiita-markdown
2021-08-01 21:00:00