Lucene search

Vditor Security Vulnerabilities

cve

CVE-2021-32855

Vditor is a browser-side Markdown editor. Versions prior to 3.8.7 are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. Version 3.8.7 contains a patch for this issue.

6.1CVSS

5.9AI Score

0.001EPSS

2023-02-21 03:15 PM

cve

CVE-2021-4103

Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 1.0.34.

5.4CVSS

5.2AI Score

0.001EPSS

2022-01-23 02:15 AM

cve

CVE-2022-0341

Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.12.

5.4CVSS

5.2AI Score

0.001EPSS

2022-03-14 04:15 AM

cve

CVE-2022-0350

Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.13.

5.4CVSS

5.2AI Score

0.001EPSS

2022-03-31 04:15 PM