Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-47844

Опубликовано: 16 янв. 2026
Источник: debian
EPSS Низкий

Описание

Xmind 2020 contains a cross-site scripting vulnerability that allows attackers to inject malicious payloads into mind mapping files or custom headers. Attackers can craft malicious files with embedded JavaScript that execute system commands when opened, enabling remote code execution through mouse interactions or file opening.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
xminditppackage

EPSS

Процентиль: 15%
0.0005
Низкий

Связанные уязвимости

nvd логотип

CVE-2021-47844

CVSS3: 6.1
nvd
21 день назад

Xmind 2020 contains a cross-site scripting vulnerability that allows attackers to inject malicious payloads into mind mapping files or custom headers. Attackers can craft malicious files with embedded JavaScript that execute system commands when opened, enabling remote code execution through mouse interactions or file opening.

github логотип

GHSA-xx2w-hg3f-6w9g

CVSS3: 6.1
github
21 день назад

Xmind 2020 contains a cross-site scripting vulnerability that allows attackers to inject malicious payloads into mind mapping files or custom headers. Attackers can craft malicious files with embedded JavaScript that execute system commands when opened, enabling remote code execution through mouse interactions or file opening.

EPSS

Процентиль: 15%
0.0005
Низкий