Description
Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.
Remediation
References
https://github.com/pandao/editor.md/issues/700
Related Vulnerabilities
CVE-2022-23457 Vulnerability in maven package org.owasp.esapi:esapi
CVE-2022-31160 Vulnerability in maven package org.webjars.bowergithub.jquery:jquery-ui
CVE-2023-22457 Vulnerability in maven package org.xwiki.contrib:application-ckeditor-ui
CVE-2022-43441 Vulnerability in npm package sqlite3
CVE-2018-3739 Vulnerability in maven package org.webjars.npm:https-proxy-agent