Description
A cross-site scripting (XSS) vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field.
Remediation
References
https://github.com/mdnice/markdown-nice/issues/327
Related Vulnerabilities
CVE-2020-11971 Vulnerability in maven package org.apache.camel:camel-main
CVE-2020-7774 Vulnerability in npm package y18n
CVE-2019-10744 Vulnerability in npm package lodash
CVE-2020-7690 Vulnerability in maven package org.webjars.bower:jspdf
CVE-2020-23262 Vulnerability in maven package net.mingsoft:ms-mcms