EPSS
Percentile
77.7%
epiceditor is vulnerable to cross-site scripting (XSS) attacks. The vulnerability is possible because it does not escape the input tags when rendering a page using marked.js.
marked.js
bad.code.blog/2017/03/09/epiceditor-cross-site-scripting/