CNNVD-202601-2774 Information

CNNVD ID

CNNVD-202601-2774

Related CVE

CVE-2021-47838

• CNNVD Published: 2026-01-16

Description (Chinese)

markright是David个人开发者的一个Markdown编辑器。 markright 1.0版本存在安全漏洞，该漏洞源于允许在markdown文件中嵌入恶意有效载荷，可能导致远程代码执行。

Description (English)

Markright is a Markdown editor for David’s personal developer. There is a security loophole in version 1.0 of markright, which stems from the possibility of embedding a malicious payload in the Markdown file, which could lead to remote code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-16

Last Modified

2026-02-24

References

https://github.com/dvcrn/markright https://imgur.com/a/VOsgKbZ https://www.exploit-db.com/exploits/49834 https://www.vulncheck.com/advisories/markright-persistent-cross-site-scripting