ID | CVE-2021-26835 | ||||||
Sažetak | No filtering of cross-site scripting (XSS) payloads in the markdown-editor in Zettlr 1.8.7 allows attackers to perform remote code execution via a crafted file. | ||||||
Reference | |||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:M/Au:N/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 21-06-2021 - 21:57 | ||||||
Objavljeno | 18-06-2021 - 12:15 |