The markdown editor exist a XSS
Ed1s0nZ opened this issue · comments
xxxxxHere is the problem descriptionxxxx
-
The version number in use
vx0.2.1 -
Whether the version has been upgraded to the new version
yes -
Current problems encountered:
The markdown editor exist a XSS -
Error logs or screenshots
Insert the XSS-payload into it
-
How to repair
Filter user input and add http-only ...