Search for packages
| purl | pkg:npm/vditor@1.1.11 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-6rj8-7xhp-7ugv
Aliases: CVE-2022-0341 GHSA-pq37-4c4g-v38c |
Cross-site Scripting in vditor |
Affected by 2 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-p1ne-x8tn-v7fu
Aliases: CVE-2021-32855 GHSA-vfmp-9999-6wqj |
Vditor is a browser-side Markdown editor. Versions prior to 3.8.7 are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. Version 3.8.7 contains a patch for this issue. |
Affected by 2 other vulnerabilities. |
|
VCID-px27-12xr-n3c4
Aliases: CVE-2022-0350 GHSA-689x-x68p-fph3 |
Cross-site Scripting in vditor |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-12T18:47:20.108074+00:00 | GitLab Importer | Affected by | VCID-p1ne-x8tn-v7fu | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/vditor/CVE-2021-32855.yml | 38.6.0 |
| 2026-06-12T18:03:44.986957+00:00 | GitLab Importer | Affected by | VCID-px27-12xr-n3c4 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/vditor/CVE-2022-0350.yml | 38.6.0 |
| 2026-06-12T18:02:08.172166+00:00 | GitLab Importer | Affected by | VCID-6rj8-7xhp-7ugv | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/vditor/CVE-2022-0341.yml | 38.6.0 |