Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:marktext:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductMarktext (f84e5ca8-f2b9-5247-a9a6-9154846a91e0)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-6492 vulnerable 2026-06-08 07:43:15.156028 MarkText index.js getRecommendTitleFromMarkdownString redos
MEDIUM (5.3)
A vulnerability has been found in MarkText up to 0.17.1 and classified as problematic. Affected by this vulnerability is the function getRecommendTitleFromMarkdownString of the file marktext/src/main/utils/index.js. The manipulation leads to inefficient regular expression complexity. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-06-22T20:00:14.265Z
Updated: 2025-06-23T16:33:52.463Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-1004 vulnerable 2026-06-08 05:52:33.607461 MarkText WSH JScript code injection
MEDIUM (5.3)
A vulnerability has been found in MarkText up to 0.17.1 on Windows and classified as critical. Affected by this vulnerability is an unknown functionality of the component WSH JScript Handler. The manipulation leads to code injection. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier VDB-221737 was assigned to this vulnerability.
Published: 2023-02-24T07:56:07.099Z
Updated: 2024-11-22T21:58:30.907Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.