jotron/StudyMD

Releases4

Frequency1 month 1 week

Last Release about 8 years ago

Stars119

Flashcards from Markdown. Built with React and Electron

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-47842 ↗	Jan 16, 2026Friday, 16 January 2026, 19:16	7.2 HIGH	—
StudyMD 0.3.2 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts into markdown files. Attackers can upload crafted markdown files with embedded JavaScript payloads that execute when the file is opened, potentially enabling remote code execution.