CVE-2020-20269

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-20269

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-20269.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-20269

Published

2021-01-26T18:15:41.973Z

Modified

2025-12-06T00:02:54.402151Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A specially crafted Markdown document could cause the execution of malicious JavaScript code in Caret Editor before 4.0.0-rc22.

References

Affected packages

Git

github.com/careteditor/releases-beta

Affected ranges

Type: GIT
Repo: https://github.com/careteditor/releases-beta
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

01debaeb6db5dd49800e66dd94bd94bad592b41b

Affected versions

4.*

4.0.0-beta0

4.0.0-beta1

4.0.0-beta2

4.0.0-beta3

4.0.0-beta4

4.0.0-beta5

4.0.0-beta6

4.0.0-beta7

4.0.0-beta8

4.0.0-beta9

4.0.0-rc1

4.0.0-rc10

4.0.0-rc11

4.0.0-rc12

4.0.0-rc13

4.0.0-rc14

4.0.0-rc15

4.0.0-rc16

4.0.0-rc17

4.0.0-rc18

4.0.0-rc19

4.0.0-rc2

4.0.0-rc20

4.0.0-rc21

4.0.0-rc3

4.0.0-rc4

4.0.0-rc5

4.0.0-rc6

4.0.0-rc7

4.0.0-rc8

4.0.0-rc9

github.com/careteditor/issues

Affected ranges

Type: GIT
Repo: https://github.com/careteditor/issues
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

github.com/careteditor/releases

Affected ranges

Type: GIT
Repo: https://github.com/careteditor/releases
Events: Introduced

0 Unknown introduced commit / All previous commits are affected