Description
Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.
Remediation
References
https://github.com/pandao/editor.md/issues/700
Related Vulnerabilities
CVE-2023-0842 Vulnerability in maven package org.webjars.npm:xml2js
CVE-2021-41246 Vulnerability in npm package express-openid-connect
CVE-2019-20444 Vulnerability in maven package io.netty:netty-codec-http
CVE-2020-36732 Vulnerability in maven package org.webjars.npm:crypto-js
CVE-2022-40664 Vulnerability in maven package org.apache.shiro:shiro-core