CVE-2020-19697 Vulnerability in npm package editor.md - Vulnerabilities

Description

Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script in the src parameter.</p> <h2 class="mt30">Remediation</h2> <p></p> <h2 class="mt30">References</h2> <div class="acx-link-list"> <p> https://github.com/pandao/editor.md/issues/701 </p> </div> <h2 class="mt30">Related Vulnerabilities</h2> <div class="acx-link-list"> <p> <a href="https://www.acunetix.com/vulnerabilities/sca/cve-2023-45278-vulnerability-in-maven-package-org-yamcs-yamcs-core/"> CVE-2023-45278 Vulnerability in maven package org.yamcs:yamcs-core </a> </p> <p> <a href="https://www.acunetix.com/vulnerabilities/sca/cve-2020-2166-vulnerability-in-maven-package-de-taimos-pipeline-aws/"> CVE-2020-2166 Vulnerability in maven package de.taimos:pipeline-aws </a> </p> <p> <a href="https://www.acunetix.com/vulnerabilities/sca/cve-2021-23421-vulnerability-in-npm-package-merge-change/"> CVE-2021-23421 Vulnerability in npm package merge-change </a> </p> <p> <a href="https://www.acunetix.com/vulnerabilities/sca/cve-2022-0341-vulnerability-in-npm-package-vditor/"> CVE-2022-0341 Vulnerability in npm package vditor </a> </p> <p> <a href="https://www.acunetix.com/vulnerabilities/sca/cve-2023-31718-vulnerability-in-npm-package-frangoteam-fuxa/"> CVE-2023-31718 Vulnerability in npm package @frangoteam/fuxa </a> </p> </div> </div> <div class="col-md-4"> <h2 class="mt30">Severity</h2> <span class="label label-danger text-uppercase">High</span> <h2 class="mt30">Classification</h2> <a class="label-link" href="https://cwe.mitre.org/data/definitions/79.html" target="_blank"> <span class="label label-info">CWE-79</span> </a> <a class="label-link" href="https://www.first.org/cvss/calculator/3.0#CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" target="_blank"> <span class="label label-info">CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N</span> </a> <h2 class="mt30">Tags</h2> <a class="label-link" href="https://www.acunetix.com/vulnerabilities/sca/tag/exploit/"> <span class="label label-info">Exploit</span> </a> <a class="label-link" href="https://www.acunetix.com/vulnerabilities/sca/tag/third-party-advisory/"> <span class="label label-info">Third Party Advisory</span> </a> </div> </div> </div> </article> </main> </div> </div> <div class="block block_demo block_off-white " id="footer-cta"> <div class="container"> <div class="row"> <div class="col-xs-12 text-center"> <h2>Take action and discover your vulnerabilities</h2> </div> </div> <div class="row"> <div class="col-xs-12 text-center"> <a class="btn btn-primary block_demo__cta_button" href="https://www.acunetix.com/web-vulnerability-scanner/demo/"> Get a demo </a> </div> </div> </div> </div> <footer> <div class="footer-clients"> <div class="wide-container"> <div class="row"> <div class="col-xs-12"> <style>.footer-clients img { opacity: 0.75; }</style> <div class="col-md-2 col-sm-4 col-xs-6 block-1"> <img loading='lazy' class='lozad' src='https://cdn.acunetix.com/wp-content/uploads/2021/06/11112839/client-aws.svg' width='56' height='34' alt='Client: AWS' title='Client: AWS'> </div> <div class="col-md-2 col-sm-4 col-xs-6 block-2"> <img loading='lazy' class='lozad' src='https://cdn.acunetix.com/wp-content/uploads/2021/06/11112839/client-cognizant.svg' width='100' height='21' alt='Client: Cognizant' title='Client: Cognizant'> </div> <div class="col-md-2 col-sm-4 col-xs-6 block-3"> <img loading='lazy' class='lozad' src='https://cdn.acunetix.com/wp-content/uploads/2021/06/08064354/client-garmin-white.svg' width='100' height='15' alt='Client: Garmin' title='Client: Garmin'> </div> <div class="col-md-2 col-sm-4 col-xs-6 block-4"> <img loading='lazy' class='lozad' src='https://cdn.acunetix.com/wp-content/uploads/2021/06/11112839/client-airforce.svg' width='71' height='60' alt='Client: Airforce' title='Client: Airforce'> </div> <div class="col-md-2 col-sm-4 col-xs-6 block-5"> <img loading='lazy' class='lozad' src='https://cdn.acunetix.com/wp-content/uploads/2021/06/08081912/client-nasa.svg' width='62' height='51' alt='Client: NASA' title='Client: NASA'> </div> <div class="col-md-2 col-sm-4 col-xs-6 block-6"> <img loading='lazy' class='lozad' src='https://cdn.acunetix.com/wp-content/uploads/2021/06/11112839/client-american-express.svg' width='56' height='60' alt='Client: American Express' title='Client: American Express'> </div> </div> </div> </div> </div> <div id="colophon" class="footer" role="contentinfo"> <div class="wide-container"> <div id="supplementary" class="row" role="complementary"> <aside id="nav_menu-2" class="widget-1 widget-odd col-md-2 col-xs-4 col-xxs-12 first footer-supplementary widget widget_nav_menu"><h5 class="widget-title">Product Information<div class="footer-svg-icon pull-right"> <svg class="icon-svg up" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-up"></use> </svg> <svg class="icon-svg down" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-down"></use> </svg> </div> </h5><div class="menu-footer-area-one-menu-container"><ul id="menu-footer-area-one-menu" class="menu"><li id="menu-item-13699" class="menu-item menu-item-13699 menu-item-acusensor-technology first-menu-item"><a href="https://www.acunetix.com/vulnerability-scanner/acusensor-technology/">AcuSensor Technology</a></li> <li id="menu-item-13701" class="menu-item menu-item-13701 menu-item-acumonitor-technology "><a href="https://www.acunetix.com/vulnerability-scanner/acumonitor-technology/">AcuMonitor Technology</a></li> <li id="menu-item-17946" class="menu-item menu-item-17946 menu-item-acunetix-integrations "><a href="https://www.acunetix.com/vulnerability-scanner/acunetix-integrations/">Acunetix Integrations</a></li> <li id="menu-item-21219" class="menu-item menu-item-21219 menu-item-vulnerability-scanner-2 "><a href="/vulnerability-scanner/">Vulnerability Scanner</a></li> <li id="menu-item-28598" class="menu-item menu-item-28598 menu-item-support-plans last-menu-item"><a href="https://www.acunetix.com/support-plans/">Support Plans</a></li> </ul></div></aside> <aside id="nav_menu-11" class="widget-1 widget-odd col-md-2 col-xs-4 col-xxs-12 second footer-supplementary widget widget_nav_menu"><h5 class="widget-title">Use Cases<div class="footer-svg-icon pull-right"> <svg class="icon-svg up" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-up"></use> </svg> <svg class="icon-svg down" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-down"></use> </svg> </div> </h5><div class="menu-footer-area-five-menu-container"><ul id="menu-footer-area-five-menu" class="menu"><li id="menu-item-18204" class="menu-item menu-item-18204 menu-item-penetration-testing-software first-menu-item"><a href="https://www.acunetix.com/vulnerability-scanner/penetration-testing-software/">Penetration Testing Software</a></li> <li id="menu-item-18205" class="menu-item menu-item-18205 menu-item-website-security-scanner "><a href="https://www.acunetix.com/vulnerability-scanner/website-security-scanner/">Website Security Scanner</a></li> <li id="menu-item-18206" class="menu-item menu-item-18206 menu-item-external-vulnerability-scanner "><a href="https://www.acunetix.com/vulnerability-scanner/external-vulnerability-scanner/">External Vulnerability Scanner</a></li> <li id="menu-item-18207" class="menu-item menu-item-18207 menu-item-web-application-security "><a href="https://www.acunetix.com/vulnerability-scanner/web-application-security/">Web Application Security</a></li> <li id="menu-item-18208" class="menu-item menu-item-18208 menu-item-vulnerability-management-software last-menu-item"><a href="https://www.acunetix.com/vulnerability-scanner/vulnerability-management-software/">Vulnerability Management Software</a></li> </ul></div></aside> <aside id="nav_menu-3" class="widget-1 widget-odd col-md-2 col-xs-4 col-xxs-12 third footer-supplementary widget widget_nav_menu"><h5 class="widget-title">Website Security<div class="footer-svg-icon pull-right"> <svg class="icon-svg up" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-up"></use> </svg> <svg class="icon-svg down" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-down"></use> </svg> </div> </h5><div class="menu-footer-area-two-menu-container"><ul id="menu-footer-area-two-menu" class="menu"><li id="menu-item-14605" class="menu-item menu-item-14605 menu-item-cross-site-scripting first-menu-item"><a href="https://www.acunetix.com/websitesecurity/cross-site-scripting/">Cross-site Scripting</a></li> <li id="menu-item-14606" class="menu-item menu-item-14606 menu-item-sql-injection "><a href="https://www.acunetix.com/websitesecurity/sql-injection/">SQL Injection</a></li> <li id="menu-item-17073" class="menu-item menu-item-17073 menu-item-xss "><a href="https://www.acunetix.com/websitesecurity/xss/">Reflected XSS</a></li> <li id="menu-item-14608" class="menu-item menu-item-14608 menu-item-csrf-attacks "><a href="https://www.acunetix.com/websitesecurity/csrf-attacks/">CSRF Attacks</a></li> <li id="menu-item-13706" class="menu-item menu-item-13706 menu-item-directory-traversal last-menu-item"><a href="https://www.acunetix.com/websitesecurity/directory-traversal/">Directory Traversal</a></li> </ul></div></aside> <aside id="nav_menu-4" class="widget-1 widget-odd col-md-2 col-xs-4 col-xxs-12 fourth footer-supplementary widget widget_nav_menu"><h5 class="widget-title">Learn More<div class="footer-svg-icon pull-right"> <svg class="icon-svg up" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-up"></use> </svg> <svg class="icon-svg down" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-down"></use> </svg> </div> </h5><div class="menu-footer-area-three-menu-container"><ul id="menu-footer-area-three-menu" class="menu"><li id="menu-item-27046" class="menu-item menu-item-27046 menu-item-white-papers first-menu-item"><a href="https://www.acunetix.com/white-papers/">White Papers</a></li> <li id="menu-item-17074" class="menu-item menu-item-object-post menu-item-17074 menu-item-tls-security-what-is-tls-ssl-part-1 "><a href="https://www.acunetix.com/blog/articles/tls-security-what-is-tls-ssl-part-1/">TLS Security</a></li> <li id="menu-item-17101" class="menu-item menu-item-17101 menu-item-wordpress-security-scan "><a href="https://www.acunetix.com/vulnerability-scanner/wordpress-security-scan/">WordPress Security</a></li> <li id="menu-item-14610" class="menu-item menu-item-14610 menu-item-web-services-wp "><a href="https://www.acunetix.com/websitesecurity/web-services-wp/">Web Service Security</a></li> <li id="menu-item-17214" class="menu-item menu-item-object-post menu-item-17214 menu-item-prevent-sql-injection-vulnerabilities-in-php-applications last-menu-item"><a href="https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/">Prevent SQL Injection</a></li> </ul></div></aside> <aside id="nav_menu-6" class="widget-1 widget-odd col-md-2 col-xs-4 col-xxs-12 five footer-supplementary widget widget_nav_menu"><h5 class="widget-title">Company<div class="footer-svg-icon pull-right"> <svg class="icon-svg up" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-up"></use> </svg> <svg class="icon-svg down" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-down"></use> </svg> </div> </h5><div class="menu-footer-area-six-menu-container"><ul id="menu-footer-area-six-menu" class="menu"><li id="menu-item-18659" class="menu-item menu-item-18659 menu-item-about first-menu-item"><a href="https://www.acunetix.com/about/">About Us</a></li> <li id="menu-item-18660" class="menu-item menu-item-18660 menu-item-customers "><a href="https://www.acunetix.com/vulnerability-scanner/customers/">Customers</a></li> <li id="menu-item-27773" class="menu-item menu-item-27773 menu-item-partners "><a href="https://www.acunetix.com/partners/">Become a Partner</a></li> <li id="menu-item-18662" class="menu-item menu-item-18662 menu-item-careers "><a href="https://www.acunetix.com/careers/">Careers</a></li> <li id="menu-item-38306" class="menu-item menu-item-38306 menu-item-contact last-menu-item"><a href="https://www.acunetix.com/contact/">Contact</a></li> </ul></div></aside> <aside id="nav_menu-12" class="widget-1 widget-odd col-md-2 col-xs-4 col-xxs-12 six footer-supplementary widget widget_nav_menu"><h5 class="widget-title">Documentation<div class="footer-svg-icon pull-right"> <svg class="icon-svg up" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-up"></use> </svg> <svg class="icon-svg down" viewBox="0 0 10 6.438"> <use xlink:href="#icon-chevron-down"></use> </svg> </div> </h5><div class="menu-footer-area-four-menu-container"><ul id="menu-footer-area-four-menu" class="menu"><li id="menu-item-26853" class="menu-item menu-item-26853 menu-item-case-studies first-menu-item"><a href="https://www.acunetix.com/case-studies/">Case Studies</a></li> <li id="menu-item-18591" class="menu-item menu-item-18591 menu-item-support "><a href="https://www.acunetix.com/support/">Support</a></li> <li id="menu-item-15963" class="menu-item menu-item-15963 menu-item-videos "><a href="https://www.acunetix.com/support/videos/">Videos</a></li> <li id="menu-item-15581" class="menu-item menu-item-15581 menu-item-web-vulnerabilities-detected "><a href="/vulnerabilities">Vulnerability Index</a></li> <li id="menu-item-18664" class="menu-item menu-item-18664 menu-item-webinars last-menu-item"><a href="https://www.acunetix.com/webinars/">Webinars</a></li> </ul></div></aside> </div> <div class="row"> <div class="col-md-12"> <ul class="footer-menu-list footer-terms-list nav nav-pills col-md-10 col-sm-12 col-xs-12"> <li id="menu-item-15523" class="menu-item menu-item-15523 menu-item-acunetix-ovs-login first-menu-item"><a href="https://online.acunetix.com">Login</a></li> <li id="menu-item-36143" class="menu-item menu-item-36143 menu-item-invicti-subscription-services-agreement "><a href="https://www.invicti.com/legal/ssa/">Invicti Subscription Services Agreement</a></li> <li id="menu-item-36523" class="menu-item menu-item-36523 menu-item-privacy-policy-2 "><a href="https://www.invicti.com/legal/privacy-policy/">Privacy Policy</a></li> <li id="menu-item-33478" class="menu-item menu-item-33478 menu-item-terms_conditions "><a href="https://www.acunetix.com/about/terms_conditions/">Terms of Use</a></li> <li id="menu-item-18684" class="menu-item menu-item-18684 menu-item-sitemap last-menu-item"><a href="https://www.acunetix.com/sitemap/">Sitemap</a></li> </ul> <ul class="footer-menu-list nav nav-pills col-md-2 col-sm-12 col-xs-12"> <li id="menu-item-13694" class="facebook menu-item menu-item-13694 menu-item-find-us-on-facebook first-menu-item"><a target="_blank" href="https://www.facebook.com/Acunetix">Find us on Facebook</a></li> <li id="menu-item-13695" class="twitter menu-item menu-item-13695 menu-item-follow-us-on-twiter "><a target="_blank" href="https://www.twitter.com/Acunetix">Follow us on Twiter</a></li> <li id="menu-item-13696" class="linkedin menu-item menu-item-13696 menu-item-follow-us-on-linkedin last-menu-item"><a target="_blank" href="https://www.linkedin.com/company/acunetix">Follow us on LinkedIn</a></li> </ul> <p class="credits col-sm-12 col-xs-12"> <a href="https://www.acunetix.com"> © Acunetix 2025, by Invicti </a> </p> </div> </div> </div> </div> </footer> <link rel='stylesheet' id='non-critical-styles-css' href='https://www.acunetix.com/wp-content/themes/acunetix/site-non-critical.min.css?ver=1.0' media='all' /> <link rel='stylesheet' id='fancybox-css' href='https://www.acunetix.com/wp-content/themes/acunetix/css/jquery.fancybox.min.css?ver=1.0' media='all' /> <link rel='stylesheet' id='highlight-js-github-css' href='https://www.acunetix.com/wp-content/themes/acunetix/js/highlight-js/styles/github.css?ver=1740091373' media='all' /> <link rel='stylesheet' id='highlight-js-custom-css' href='https://www.acunetix.com/wp-content/themes/acunetix/js/highlight-js/styles/custom.css?ver=1740091373' media='all' /> <script src="https://www.acunetix.com/wp-content/themes/acunetix/js/jquery-3.7.1.min.js" id="jquery-js"></script> <script defer src="https://www.acunetix.com/wp-content/themes/acunetix/dist/js/app.min.js?ver=1740058936" id="all-js-es-js"></script> <script defer src="https://www.acunetix.com/wp-content/themes/acunetix/js/acx-all.min.js?ver=1740058936" id="all-js-js"></script> <script defer src="//www.acunetix.com/wp-content/plugins/acx-forms/js/jquery.validate.min.js?ver=1.9.5" id="acx-forms-validation-js"></script>   <script type="application/javascript"> jQuery(document).ready(function ($) { var theBar = document.querySelector('.acunetix-bar'); var hideAcxBar = localStorage.getItem('hello_bar'); if (theBar && (hideAcxBar == null || hideAcxBar !== 'hide')) { var closeBar = document.querySelector('.bar-close'); var body = document.querySelector('body'); body.classList.add('acunetix-bar-active'); closeBar.addEventListener('click', () => { localStorage.setItem('hello_bar', 'hide');// eslint-disable-line body.classList.remove('acunetix-bar-active'); }); } }); </script> <script type="application/javascript"> jQuery(document).ready(function ($) { var overlay = $('#wpadminbar'); if (overlay.length > 0) { nav.addClass('has-overlay'); } }); </script> <div class="hide"> <svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><defs><clipPath id="a"><path d="M0 0h14v13.625H0z"/></clipPath><clipPath id="a"><path d="M0 0h14v13.625H0z"/></clipPath></defs><symbol id="logo-icon" viewBox="0 0 192 192"><path d="M0 40c0-14.001 0-21.002 2.725-26.35A25 25 0 0113.65 2.725C18.998 0 26 0 40 0h112c14.001 0 21.002 0 26.35 2.725a25 25 0 0110.925 10.925C192 18.998 192 26 192 40v112c0 14.001 0 21.002-2.725 26.35a25 25 0 01-10.925 10.925C173.002 192 166.001 192 152 192H40c-14.001 0-21.002 0-26.35-2.725A25 25 0 012.725 178.35C0 173.002 0 166.001 0 152V40z" fill="#431658"/><path fill-rule="evenodd" clip-rule="evenodd" d="M128.789 160l-6.936-16.245H71.147L64.21 160H37L92.342 33h8.457L156 160h-27.211zm-24.044-58.299l8.262 21.072h-33.05l8.263-21.072 8.262-21.072 8.263 21.072z" fill="#fff"/></symbol><symbol id="icon-arrow-left"><g data-name="Icon / Arrow / Left" clip-path="url(#a)"><path data-name="" d="M8.031.906a.635.635 0 01.234.531.782.782 0 01-.234.531l-3.75 3.594h8.969a.747.747 0 01.75.75v1a.747.747 0 01-.75.75H4.281l3.75 3.594a.782.782 0 01.234.531.635.635 0 01-.234.531l-.687.687a.754.754 0 01-1.062 0L.219 7.344a.754.754 0 010-1.062L6.281.219a.754.754 0 011.062 0z"/></g></symbol><symbol id="icon-arrow-right"><g data-name="Icon / Arrow / Right" clip-path="url(#a)"><path data-name="" d="M5.969.906l.687-.687a.754.754 0 011.062 0l6.062 6.062a.754.754 0 010 1.062l-6.061 6.063a.754.754 0 01-1.062 0l-.687-.687a.635.635 0 01-.234-.531.782.782 0 01.234-.531l3.75-3.594H.75a.723.723 0 01-.531-.219A.723.723 0 010 7.312v-1a.723.723 0 01.219-.531.723.723 0 01.531-.219h8.969l-3.75-3.593a.782.782 0 01-.234-.531.635.635 0 01.234-.532z"/></g></symbol><symbol id="icon-check"><g data-name="Icon / Check"><path data-name="" class="cls-1" d="M5.437 11.687L.219 6.5a.833.833 0 010-1.125L1.375 4.25A.7.7 0 011.922 4a.794.794 0 01.578.25L6 7.75l7.5-7.5a.794.794 0 01.578-.25.7.7 0 01.547.25l1.156 1.125a.761.761 0 01.219.562.761.761 0 01-.219.562l-9.219 9.188a.758.758 0 01-1.125 0z"/></g></symbol><symbol id="icon-chevron-down"><g data-name="Icon / Chevron / Down"><path data-name="" class="cls-1" d="M4.469 6.219l-4.25-4.25A.723.723 0 010 1.437.723.723 0 01.219.906L.937.219A.723.723 0 011.469 0 .723.723 0 012 .219l3 3 3-3a.754.754 0 011.062 0l.719.687a.723.723 0 01.219.531.723.723 0 01-.219.531l-4.25 4.25a.754.754 0 01-1.062 0z"/></g></symbol><symbol id="icon-chevron-left"><g data-name="Icon / Chevron / Left"><path data-name="" class="cls-1" d="M.219 4.469l4.25-4.25a.754.754 0 011.062 0l.687.719a.723.723 0 01.219.531.723.723 0 01-.218.531l-3 3 3 3a.754.754 0 010 1.062l-.687.719a.754.754 0 01-1.062 0L.219 5.531a.754.754 0 010-1.062z"/></g></symbol><symbol id="icon-chevron-right"><g data-name="Icon / Chevron / Right"><path data-name="" class="cls-1" d="M6.219 4.469a.754.754 0 010 1.062l-4.25 4.25a.723.723 0 01-.532.219.723.723 0 01-.531-.219l-.687-.719A.754.754 0 01.219 8l3-3-3-3A.723.723 0 010 1.469.723.723 0 01.219.937L.906.219A.723.723 0 011.437 0a.723.723 0 01.531.219z"/></g></symbol><symbol id="icon-chevron-up"><g data-name="Icon / Chevron / Up"><path data-name="" class="cls-1" d="M4.469.219a.754.754 0 011.062 0l4.25 4.25a.754.754 0 010 1.062l-.719.687A.754.754 0 018 6.219l-3-3-3 3a.723.723 0 01-.531.219.723.723 0 01-.531-.219l-.719-.688a.754.754 0 010-1.062z"/></g></symbol><symbol id="icon-search"><path d="M15.781 13.844a.723.723 0 01.219.531.723.723 0 01-.219.531l-.875.875a.723.723 0 01-.531.219.723.723 0 01-.531-.219l-3.125-3.125a.723.723 0 01-.219-.531v-.5C9.333 12.542 8 13 6.5 13a6.313 6.313 0 01-3.266-.875 6.567 6.567 0 01-2.359-2.36A6.313 6.313 0 010 6.5c0-1.187.292-2.276.875-3.266A6.567 6.567 0 013.235.875 6.313 6.313 0 016.5 0c1.187 0 2.276.292 3.266.875a6.567 6.567 0 012.359 2.36c.583.989.875 2.078.875 3.265 0 1.5-.458 2.833-1.375 4h.5c.208 0 .385.073.531.219l3.125 3.125zM6.5 10.5c.73 0 1.401-.177 2.016-.531a3.891 3.891 0 001.453-1.453A3.966 3.966 0 0010.5 6.5c0-.73-.177-1.401-.531-2.016a3.891 3.891 0 00-1.453-1.453A3.966 3.966 0 006.5 2.5c-.73 0-1.401.177-2.016.531a3.891 3.891 0 00-1.453 1.453A3.966 3.966 0 002.5 6.5c0 .73.177 1.401.531 2.016a3.891 3.891 0 001.453 1.453A3.966 3.966 0 006.5 10.5z" fill="#CED5DA" fill-rule="nonzero"/></symbol></svg></div> </body></html>