CVE-2021-33041

Published: 2021-05-17T17:15Z

Last Modified: 2024-11-21T06:08Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

vmd through 1.34.0 allows 'div class="markdown-body"' XSS, as demonstrated by Electron remote code execution via require('child_process').execSync('calc.exe') on Windows and a similar attack on macOS. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt