CodiMD 1.3.1, when Safari is used,... CVE-2019-15499

4.3 AV AC AU C I A
发布: 2019-08-23
修订: 2019-10-09

CodiMD 1.3.1, when Safari is used, allows XSS via an IFRAME element with allow-top-navigation in the sandbox attribute, in conjunction with a data: URL.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有2条受影响产品信息