Unrated severityNVD Advisory· Published Mar 7, 2022· Updated Aug 3, 2024
CVE-2022-21158
CVE-2022-21158
Description
A stored cross-site scripting vulnerability in marktext versions prior to v0.17.0 due to improper handling of the link (with javascript: scheme) inside the document may allow an attacker to execute an arbitrary script on the PC of the user using marktext.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/marktext/marktext/releases/tag/v0.17.0mitrex_refsource_MISC
- jvn.jp/en/jp/JVN89524240/index.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.