XSS to code execution vulnerability #3
"XSS to code execution vulnerability due to enabled node integration"
Vulnerability: XSS to code execution
PoC: paste the following payload as the content of the markdown file:
Attack vector: If the victim is forced or tricked into pasting such code or open a crafted file in the markdown editor, it is possible for the attacker to steal user’s data from the computer or perform any actions on the machine on which the application running on.