Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross Site Scripting vulnerability found in Phachon mm-wiki v.0.1.2 allows a remote attacker to execute arbitrary code via javascript code in the markdown editor.
Advisories for Golang/Github.com/Phachon/Mm-Wiki package
2023
Cross-Site Request Forgery (CSRF)
Cross Site Request Forgery vulnerability found in Phachon mm-wiki v.0.1.2 allows a remote attacker to execute arbitrary code via the system/user/save parameter.
2022
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
mm-wki v0.2.1 is vulnerable to Cross Site Scripting (XSS).