Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mutation XSS exists in Mark Text through 0.16.2 that leads to Remote Code Execution. NOTE: this might be considered a duplicate of CVE-2020-26870; however, it can also be considered an issue in the design of the "source code mode" feature, which parses HTML even though HTML support is not one of the primary advertised roles of the product.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Mark Text 跨站脚本漏洞
Vulnerability Description
Mark Text是个人开发者的一款基于 Electron 构建的 Markdown 编辑器。 Mark Text 0.16.2版本存在跨站脚本漏洞,攻击者可利用该漏洞导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A