-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| editor.md | npm | <= 1.5.0 |
Miggo AIRoot Cause AnalysisThe vulnerability stems from improper input sanitization during markdown-to-HTML conversion. While exact function names aren't visible in the provided data, the nature of XSS via crafted markdown implies the core parsing/renderer is vulnerable. The advisory explicitly states the root cause is lack of filtering in markdown text processing. This would manifest in whatever function handles HTML generation from user-supplied markdown content.
Ongoing coverage of React2Shell