Описание
Moeditor 0.2.0 contains a persistent cross-site scripting vulnerability that allows attackers to store malicious payloads within markdown files. Attackers can upload specially crafted markdown files with embedded JavaScript that execute when opened, potentially enabling remote code execution on the victim's system.
EPSS
Процентиль: 25%
0.00089
Низкий
7.2 High
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 7.2
github
22 дня назад
Moeditor 0.2.0 contains a persistent cross-site scripting vulnerability that allows attackers to store malicious payloads within markdown files. Attackers can upload specially crafted markdown files with embedded JavaScript that execute when opened, potentially enabling remote code execution on the victim's system.
EPSS
Процентиль: 25%
0.00089
Низкий
7.2 High
CVSS3
Дефекты
CWE-79