EPSS
Percentile
21.4%
vditor is vulnerable to cross-site scripting. The vulnerability exist due to a lack of sanitization of the input via the event tags.
github.com/vanessa219/vditor/commit/8d4d0889dd72b2f839e93a49db3da3a370416c7d
github.com/Vanessa219/vditor/issues/1133
huntr.dev/bounties/67b980af-7357-4879-9448-a926c6474225