Description
Pandao Editor.md 1.5.0 allows XSS via crafted attributes of an invalid IMG element.
Remediation
References
https://github.com/pandao/editor.md/issues/612
Related Vulnerabilities
CVE-2023-49376 Vulnerability in maven package com.jfinal:jfinal
CVE-2020-36618 Vulnerability in npm package whois
CVE-2022-23539 Vulnerability in maven package org.webjars.npm:jsonwebtoken
CVE-2020-21125 Vulnerability in maven package com.bstek.ureport:ureport2-console
CVE-2021-32854 Vulnerability in maven package org.webjars.bower:textangular