VYPR

Hackmd.io

by Hackmdio

CVEs (1)

  • CVE-2024-38354HigJul 10, 2024
    risk 0.53cvss 8.1epss 0.00

    CodiMD allows realtime collaborative markdown notes on all platforms. The notebook feature of Hackmd.io permits the rendering of iframe `HTML` tags with an improperly sanitized `name` attribute. This vulnerability enables attackers to perform cross-site scripting (XSS) attacks…