Description
Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.
Remediation
References
https://github.com/pandao/editor.md/issues/700
Related Vulnerabilities
CVE-2022-29631 Vulnerability in maven package org.jodd:jodd-http
CVE-2023-37911 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2022-24278 Vulnerability in npm package convert-svg-core
CVE-2021-23412 Vulnerability in npm package gitlogplus
CVE-2020-7642 Vulnerability in maven package org.webjars.bowergithub.afarkas:lazysizes