CVE-2022-42967

Publication date

2023-01-11 00:00:00

Family

JFROG

State

PUBLISHED

Description

Caret is vulnerable to an XSS attack when the user opens a crafted Markdown file when preview mode is enabled. This directly leads to client-side code execution.