Go modules package

github.com/phachon/mm-wiki

pkg:golang/github.com/phachon/mm-wiki

Vulnerabilities (3)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2020-19278	—	<= 0.1.2	—	Apr 4, 2023	Cross Site Request Forgery vulnerability found in Phachon mm-wiki v.0.1.2 allows a remote attacker to execute arbitrary code via the system/user/save parameter.
CVE-2020-19277	—	<= 0.1.2	—	Apr 4, 2023	Cross Site Scripting vulnerability found in Phachon mm-wiki v.0.1.2 allows a remote attacker to execute arbitrary code via javascript code in the markdown editor.
CVE-2021-40289	—	<= 0.2.1	—	Nov 10, 2022	mm-wki v0.2.1 is vulnerable to Cross Site Scripting (XSS).

CVE-2020-19278Apr 4, 2023
affected <= 0.1.2
Cross Site Request Forgery vulnerability found in Phachon mm-wiki v.0.1.2 allows a remote attacker to execute arbitrary code via the system/user/save parameter.
CVE-2020-19277Apr 4, 2023
affected <= 0.1.2
Cross Site Scripting vulnerability found in Phachon mm-wiki v.0.1.2 allows a remote attacker to execute arbitrary code via javascript code in the markdown editor.
CVE-2021-40289Nov 10, 2022
affected <= 0.2.1
mm-wki v0.2.1 is vulnerable to Cross Site Scripting (XSS).