B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (3.1)

CVE-2026-49493 - Markdown Preview Enhanced Arbitrary Code Execution via Bitfield interpretJS()

CVE ID :CVE-2026-49493 Published : June 5, 2026, 6:17 p.m. | 57 minutes ago Description :Markdown Preview Enhanced before 0.8.28 parses Bitfield fenced code blocks with interpretJS(), which evaluates the block content as code via vm.runInNewContext(), allowing arbitrary code execution. A...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-46400 - HAXCMS PHP has a File Upload Validation Bypass

2026-06-05 Mittel

CVE-2026-45779 - Open XDMoD Vulnerable to Unauthenticated SQL Injection Leading to Full Database Compromise

2026-06-05 Kritisch

CVE-2026-46398 - HAX CMS Missing Secure Flag on Cookie

2026-06-05 Mittel

CVE-2026-45758 - Malicious code in guardrails-ai 0.10.1 (supply chain compromise)

2026-06-05 Mittel

CVE-2026-45777 - Open XDMoD Vulnerable to Unauthenticated Remote Code Execution (RCE) via OS Command Injection

2026-06-05 Kritisch

CVE-2026-45778 - Open XDMoD Vulnerable to Reflected Cross-Site Scripting (XSS) in Password Reset

2026-06-05 Kritisch