Cross-Site Scripting (XSS) vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| django-markdownx(PyPI) | 0 | N/A | N/A |
CVSS Metrics
