Security Advisory

CVE-2022-24123

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-29 22:53:16

Last updated 2024-08-03 03:59:23

Assigner mitre

State PUBLISHED

Description

MarkText through 0.16.3 does not sanitize the input of a mermaid block before rendering. This could lead to Remote Code Execution via a .md file containing a mutation Cross-Site Scripting (XSS) payload.

← Browse all CVEs View on cve.org ↗