Name: Codimd
Author: Hackmd

🔍 What is Codimd?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-38354

HIGH CVSS 8.1 Jul 10, 2024

CVE-2024-38354 is a cross-site scripting (XSS) vulnerability in CodiMD/HackMD's notebook feature that allows attackers to inject malicious scripts via improperly sanitized iframe name attributes. This...

CVE-2024-22778

HIGH CVSS 7.5 Feb 21, 2024

CVE-2024-22778 is a Denial of Service vulnerability in HackMD CodiMD that allows attackers to crash the service, making it unavailable to legitimate users. This affects all organizations running vulne...

CVE-2025-46654

MEDIUM CVSS 4.9 Apr 26, 2025

CVE-2025-46654 is a cross-site scripting (XSS) vulnerability in CodiMD that allows attackers to bypass Content Security Policy (CSP) protections by uploading HTML files that reference uploaded JavaScr...