（CVE-2019-19596）Gitbook 储存型xss.md

377 B / 2021-07-15 19:53:21

    （CVE-2019-19596）Gitbook 储存型xss
===================================

一、漏洞简介
------------

GitBook through 2.6.9 allows XSS via a local .md file

By entering script in MD file, it can be executed by gitbook

二、漏洞影响
------------

GitBook 2.6.9

三、复现过程
------------

![](./resource/(CVE-2019-19596)Gitbook储存型xss/media/rId24.png)