VYPR
High severity7.2NVD Advisory· Published Jan 16, 2026· Updated Apr 15, 2026

CVE-2021-47840

CVE-2021-47840

Description

Moeditor 0.2.0 contains a persistent cross-site scripting vulnerability that allows attackers to store malicious payloads within markdown files. Attackers can upload specially crafted markdown files with embedded JavaScript that execute when opened, potentially enabling remote code execution on the victim's system.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.