Medium severity6.1NVD Advisory· Published Aug 11, 2023· Updated Jun 17, 2026
CVE-2020-19952
CVE-2020-19952
Description
Cross Site Scripting (XSS) vulnerability in Rendering Engine in jbt Markdown Editor thru commit 2252418c27dffbb35147acd8ed324822b8919477, allows remote attackers to execute arbirary code via crafted payload or opening malicious .md file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- jbt/Markdown Editordescription
- Range: thru commit 2252418c27dffbb35147acd8ed324822b8919477
Patches
Vulnerability mechanics
References
3- github.com/jbt/markdown-editor/commit/228f1947a5242a6fbe2995d72d21b7e5f5178f35nvdPatch
- github.com/jbt/markdown-editor/pull/110nvdPatch
- github.com/jbt/markdown-editor/issues/106nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.