vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet.
CVSS Score
5.9
EPSS Score
0.001
Published
2024-07-05
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.13.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-31
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.12.
CVSS Score
6.6
EPSS Score
0.001
Published
2022-03-14