Vulnerabilities > Inkdrop > Markdown Nice > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-09 | CVE-2022-38639 | Cross-site Scripting vulnerability in Inkdrop Markdown Nice 1.8.22 A cross-site scripting (XSS) vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field. | 5.4 |