Vulnerabilities > Caret

DATE CVE VULNERABILITY TITLE RISK
2023-01-11 CVE-2022-42967 Cross-site Scripting vulnerability in Caret
Caret is vulnerable to an XSS attack when the user opens a crafted Markdown file when preview mode is enabled.
network
low complexity
caret CWE-79
critical
9.6
2021-01-26 CVE-2020-20269 Unspecified vulnerability in Caret
A specially crafted Markdown document could cause the execution of malicious JavaScript code in Caret Editor before 4.0.0-rc22.
network
low complexity
caret
critical
9.8
2019-03-22 CVE-2019-9927 Unspecified vulnerability in Caret
Caret before 2019-02-22 allows Remote Code Execution.
network
low complexity
caret
critical
9.8