CNNVD-202601-2799 Information
Jan 16, 2026
cve
CNNVD ID
CNNVD-202601-2799
Related CVE
- CNNVD Published: 2026-01-16
Description (Chinese)
StudyMD是Jotron个人开发者的一个Markdown阅读器。 StudyMD 0.3.2版本存在安全漏洞,该漏洞源于允许向markdown文件注入恶意脚本,可能导致远程代码执行。
Description (English)
StudyMD is a Markdown reader for Jotron’s personal developer. There is a security loophole in the StudyMD version 0.3.2, which stems from allowing malicious scripts to be injected into the Markdown file, which may lead to remote code execution.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2026-01-16
Last Modified
2026-02-24
References
https://github.com/jotron/StudyMD https://imgur.com/a/lDHKEIp https://www.exploit-db.com/exploits/49832 https://www.vulncheck.com/advisories/studymd-persistent-cross-site-scripting
Share on: