CVE-2021-47840

HIGH

Moeditor 0.2.0 - Stored Cross-Site Scripting via Markdown File Upload

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47840. PoCs published by TaurusOmar.

AI-analyzed exploit summary This exploit demonstrates a persistent XSS vulnerability in Moeditor 0.2.0, allowing an attacker to execute arbitrary JavaScript code when a malicious .md file is opened. The payload includes a reverse shell attempt via netcat, though execution depends on the victim's environment.

Description

Moeditor 0.2.0 contains a persistent cross-site scripting vulnerability that allows attackers to store malicious payloads within markdown files. Attackers can upload specially crafted markdown files with embedded JavaScript that execute when opened, potentially enabling remote code execution on the victim's system.

Exploits (1)

exploitdb WORKING POC
by TaurusOmar · javascriptwebappsmultiple
https://www.exploit-db.com/exploits/49830

This exploit demonstrates a persistent XSS vulnerability in Moeditor 0.2.0, allowing an attacker to execute arbitrary JavaScript code when a malicious .md file is opened. The payload includes a reverse shell attempt via netcat, though execution depends on the victim's environment.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Moeditor 0.2.0
No auth needed
Prerequisites: Victim must open a malicious .md file in Moeditor
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/49830
Various Sources product
https://moeditor.js.org/
Various Sources product
https://imgur.com/a/UdP4JaX

Scores

CVSS v3 7.2
EPSS 0.0004
EPSS Percentile 13.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Published Jan 16, 2026
Tracked Since Feb 18, 2026