EPSS
Percentile
30.0%
simplemde is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists due to the lack of sanitization of the values of img and label, allowing XSS attacks.
img
label
github.com/sparksuite/simplemde-markdown-editor/issues/721