A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE up to 1.11.2. This affects an unknown part of the component iFrame Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-0647. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.