Lucene search
Veracode Vulnerability DatabaseVERACODE:34684HistoryMar 15, 2022 - 4:29 a.m.
Cross-site Scripting (XSS)
2022-03-1504:29:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
vditor
xss
vulnerability
url
javascript
markdown
EPSS
0.001
Percentile
21.4%
vditor is vulnerable to cross-site scripting. The vulnerability exists because the library does not properly encode the double-quotes in the url, allowing an attacker to escape the href attribute and inject and execute malicious javascript via the links using markdown syntax.
Related
osv
osv
CVE-2022-0341
2022-03-14 04:15:08
Cross-site Scripting in vditor
2022-03-15 00:01:02
huntr
huntr
Cross-site Scripting (XSS) - Stored in vanessa219/vditor
2022-01-23 03:24:49
cnvd
cnvd
vditor cross-site scripting vulnerability
2022-03-16 00:00:00
prion
prion
Cross site scripting
2022-03-14 04:15:00
cvelist
cvelist
CVE-2022-0341 Cross-site Scripting (XSS) - Stored in vanessa219/vditor
2022-03-14 04:10:09
github
github
Cross-site Scripting in vditor
2022-03-15 00:01:02
cve
cve
CVE-2022-0341
2022-03-14 04:15:08
nvd
nvd
CVE-2022-0341
2022-03-14 04:15:08