CVE-2021-29996
Published
CVSS v3
9.6
CRITICAL
CVSS v2
6.8
MEDIUM
Affected
1
PROJECT
Description
Mark Text through 0.16.3 allows attackers arbitrary command execution. This could lead to Remote Code Execution (RCE) by opening .md files containing a mutation Cross Site Scripting (XSS) payload.
📝A simple and elegant markdown editor, available for Linux, macOS and Windows.
GitHub