1 results (0.002 seconds)
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-38639
https://notcve.org/view.php?id=CVE-2022-38639
09 Sep 2022 — A cross-site scripting (XSS) vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field. Una vulnerabilidad de tipo cross-site scripting (XSS) en Markdown-Nice versión v1.8.22, permite a atacantes ejecutar scripts web o HTML arbitrarios por medio de una carga útil diseñada inyectada en el campo Community Posting • https://github.com/mdnice/markdown-nice/issues/327 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •