Arbitrary Code Execution through Sanitizer Bypass in GitHub repository jgraph/drawio before 18.0.0. - Arbitrary (remote) code execution in the desktop app. - Stored XSS in the web app.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
diagrams drawio |