Vulnerabilities/

Cross-site Scripting in pandao editor.md

Severity:: Medium

Description

pandao Editor.md 1.5.0 allows XSS via the Javascript: string.

Recommendation

No fix is available yet. Followings are affected versions:

= 1.5.0

References

Related Issues

Tags:: npm; editor.md

Anything's wrong? Let us know Last updated on February 01, 2023