Language input for the fenced code block should be sanitized before rendered.
Actual behavior:
HTML stored as language input is not sanitized. Arbitrary javascript code is executed upon rendering. Processes outside of Mark Text could be executed due to nodeIntegration being enabled.
Proof of Concept
Versions
Mark Text version: 0.16.3
Operating system: Windows, Linux, MacOS
The text was updated successfully, but these errors were encountered:
Description
Cross Site Scripting (XSS) vulnerability that could result in Remote Code Execution (RCE).
CVE-2021-29996 was assigned for this issue.
Steps to reproduce
Expected behavior:
Language input for the fenced code block should be sanitized before rendered.
Actual behavior:
HTML stored as language input is not sanitized. Arbitrary javascript code is executed upon rendering. Processes outside of Mark Text could be executed due to nodeIntegration being enabled.
Proof of Concept
Versions
The text was updated successfully, but these errors were encountered: