Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-46654

CodiMD through 2.2.0 has a CSP-based protection mechanism against XSS through uploaded JavaScript content, but it can be bypassed by uploading a .html file that references an uploaded .js file.

Published

2025-04-26T21:15:15.100

Last Modified

2025-08-05T15:14:39.230

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.9 (MEDIUM)

Weaknesses

Type: Secondary
CWE-424

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	hackmd	codimd	≤ 2.2.0	Yes

References

https://github.com/hackmdio/codimd/issues/1910 Exploit, Issue Tracking ([email protected])
https://github.com/zast-ai/vulnerability-reports/blob/main/formidable/file_upload/report.md Exploit, Third Party Advisory ([email protected])
https://github.com/hackmdio/codimd/issues/1910 Exploit, Issue Tracking (134c704f-9b21-4f2e-91b3-4a467353bcc0)