First published: Mon Apr 05 2021(Updated: )
Mark Text through 0.16.3 allows attackers arbitrary command execution. This could lead to Remote Code Execution (RCE) by opening .md files containing a mutation Cross Site Scripting (XSS) payload.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Marktext Marktext | <=0.16.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.