Количество 2
Количество 2
CVE-2023-0835
почти 3 года назад
markdown-pdf version 11.0.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the Markdown content entered by the user.
CVSS3: 8.2
EPSS: Низкий
GHSA-qghr-877h-f9jh
почти 3 года назад
markdown-pdf vulnerable to local file read via server side cross-site scripting (XSS)
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-0835 markdown-pdf version 11.0.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the Markdown content entered by the user. | CVSS3: 8.2 | 0% Низкий | почти 3 года назад |
| GHSA-qghr-877h-f9jh markdown-pdf vulnerable to local file read via server side cross-site scripting (XSS) | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
Уязвимостей на страницу
20