MEDIUM 6.1 npm
GHSA-g2g4-47gv-p72v · CVE-2026-26028 CryptPad has a Sanitizer Bypass in Diffmarked.js that Allows Arbitrary HTML Injection and Potential XSS
Modified: 5/26/2026
package
npm / cryptpad
pkg:npm/cryptpad
package
pkg:npm/cryptpad
CryptPad has a Sanitizer Bypass in Diffmarked.js that Allows Arbitrary HTML Injection and Potential XSS
Modified: 5/26/2026