VYPR
Vendor

Careteditor

Products
3
CVEs
3
Across products
4
Status
Private

Products

3

Recent CVEs

3
  • CVE-2020-20269CriJan 26, 2021
    risk 0.64cvss 9.8epss 0.05

    A specially crafted Markdown document could cause the execution of malicious JavaScript code in Caret Editor before 4.0.0-rc22.

  • CVE-2019-9927CriMar 22, 2019
    risk 0.64cvss 9.8epss 0.04

    Caret before 2019-02-22 allows Remote Code Execution.

  • CVE-2022-42967HigJan 11, 2023
    risk 0.49cvss 7.5epss 0.01

    Caret is vulnerable to an XSS attack when the user opens a crafted Markdown file when preview mode is enabled. This directly leads to client-side code execution.