Description
Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.
Remediation
References
https://github.com/pandao/editor.md/issues/700
Related Vulnerabilities
CVE-2020-6428 Vulnerability in maven package org.webjars.npm:electron
CVE-2022-36083 Vulnerability in npm package jose
CVE-2023-24057 Vulnerability in maven package ca.uhn.hapi.fhir:org.hl7.fhir.r5
CVE-2023-1370 Vulnerability in maven package net.minidev:json-smart
CVE-2023-41080 Vulnerability in maven package org.apache.tomcat:tomcat