CNNVD-202601-2779 Information
Jan 16, 2026
cve
CNNVD ID
CNNVD-202601-2779
Related CVE
- CNNVD Published: 2026-01-16
Description (Chinese)
Marky是瑞士Alessandro Arnodo个人开发者的一个 Markdown 编辑器。 Marky 0.0.1版本存在安全漏洞,该漏洞源于允许向markdown文件注入恶意脚本,可能导致远程代码执行。
Description (English)
Marky is a Markdown editor for Alessandro Arnoldo in Switzerland. Version 0.01 of Marky has a security loophole, which stems from allowing malicious scripts to be injected into the Markdown file, which may lead to remote code execution.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2026-01-16
Last Modified
2026-02-24
References
https://github.com/vesparny/marky https://imgur.com/a/qclfrUx https://www.exploit-db.com/exploits/49831 https://www.vulncheck.com/advisories/marky-persistent-cross-site-scripting
Share on: