-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AIMiggo AIRoot Cause AnalysisThe vulnerability manifests in two key phases: 1) Unsanitized input handling during content creation (via PageController), and 2) Unsafe HTML generation during markdown rendering (via MarkdownService). The combination allows stored XSS. Confidence is high for the markdown processor as improper sanitization is the root cause, and medium for the controller as input validation patterns are common but not explicitly confirmed without code.
| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| Piranha | nuget | <= 11.1.0 |