CNNVD-202508-1383 Information

CNNVD ID

CNNVD-202508-1383

Related CVE

CVE-2025-51691

• CNNVD Published: 2025-08-13

Description (Chinese)

MarkTwo是Anthony Garvan个人开发者的一个markdown编辑器。 MarkTwo e3a1d3f90cce4ea9c26efcbbf3a1cbfb9dcdb298版本存在安全漏洞，该漏洞源于编辑器接口未清理用户输入的Markdown，可能导致跨站脚本攻击。

Description (English)

Mark Two is a Markdown editor for Anthony Garvan’s personal developer. The security gap in version 398 of MarkTwo e3a1d3f90cce4ea9c26efbbf3a1cbfbb9dcdb, which originated from the fact that the editor interface did not clean up the user’s input of Markdown, could result in a cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-13

Last Modified

2026-02-24

References

https://marktwo.app/try-it-now https://github.com/0x72303074/CVE-Disclosures/tree/main/MarkTwo%20Markdown%20Editor/CVE-2025-51691 https://github.com/anthonygarvan/marktwo https://access.redhat.com/security/cve/cve-2025-51691