Description
Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.
Remediation
References
https://github.com/pandao/editor.md/issues/700
Related Vulnerabilities
CVE-2018-15685 Vulnerability in npm package electron
CVE-2020-7686 Vulnerability in npm package rollup-plugin-dev-server
CVE-2019-10765 Vulnerability in npm package iobroker.admin
CVE-2017-9805 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2020-28481 Vulnerability in maven package org.webjars.bower:socket.io