VYPR
High severity7.2NVD Advisory· Published Jan 16, 2026· Updated Apr 15, 2026

CVE-2021-47842

CVE-2021-47842

Description

StudyMD 0.3.2 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts into markdown files. Attackers can upload crafted markdown files with embedded JavaScript payloads that execute when the file is opened, potentially enabling remote code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Jotron/Studymdreferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =0.3.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.