B3log Vditor
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in B3log Vditor.
By the Year
In 2026 there have been 0 vulnerabilities in B3log Vditor. Vditor did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 6.10 |
| 2022 | 3 | 5.40 |
It may take a day or so for new Vditor vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent B3log Vditor Security Vulnerabilities
Vditor <3.8.7 XSS in browser-side Markdown editor (copy-paste)
CVE-2021-32855
6.1 - Medium
- February 21, 2023
Vditor is a browser-side Markdown editor. Versions prior to 3.8.7 are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. Version 3.8.7 contains a patch for this issue.
XSS
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.13.
CVE-2022-0350
5.4 - Medium
- March 31, 2022
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.13.
XSS
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.12.
CVE-2022-0341
5.4 - Medium
- March 14, 2022
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.12.
XSS
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 1.0.34.
CVE-2021-4103
5.4 - Medium
- January 23, 2022
Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 1.0.34.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for B3log Vditor or by B3log? Click the Watch button to subscribe.
