CVE-2018-13433

Boostnote v0.11.7 allows XSS during highlighting of Markdown text, as demonstrated by an onerror attribute of an IMG element.
References
Link Resource
https://github.com/BoostIO/Boostnote/issues/2184 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:boostnote:boostnote:0.11.7:*:*:*:*:*:*:*

Information

Published : 2018-07-08 12:29

Updated : 2018-08-28 03:12


NVD link : CVE-2018-13433

Mitre link : CVE-2018-13433

Products Affected
No products.
CWE