📦 Marktext

Mark Text v0.16.3 contains a DOM-based cross-site scripting vulnerability in pasteCtrl.js that allows attackers to inject malicious scripts. When exploited, this can lead to remote code execution by t...

CVE-2022-24123 is a critical vulnerability in MarkText that allows remote code execution through malicious markdown files. Attackers can craft .md files containing XSS payloads in mermaid blocks that ...

CVE-2021-29996 is a critical vulnerability in Mark Text that allows attackers to execute arbitrary commands through malicious .md files containing XSS payloads. This affects all users of Mark Text ver...