Description

CodiMD through 2.5.4 has a CSP-based protection mechanism against XSS through uploaded SVG documents containing JavaScript, but it can be bypassed in certain cases of different-origin file storage, such as AWS S3. NOTE: it can be considered a user error if AWS is employed for hosting untrusted JavaScript content, but the selected architecture within AWS does not have components that are able to insert Content-Security-Policy headers.

INFO

Published Date :

2025-04-26T00:00:00.000Z

Last Modified :

2025-04-29T15:22:43.429Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-46655 vulnerability.

Vendors Products
Hackmd
  • Codimd
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-46655.

URL Resource
https://github.com/hackmdio/codimd/issues/1910 cve-icon cve-icon cve-icon
https://github.com/zast-ai/vulnerability-reports/blob/main/formidable/file_upload/report.md cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact