marked@0.0.5 vulnerabilities

A markdown parser built for speed

Latest version 0.6.2
First published 8 years ago
Latest version published 3 months ago

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the marked@0.0.5 package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • H
Regular Expression Denial of Service (ReDoS)
<0.3.18 Not available 27 Feb, 2018
  • M
Cross-site Scripting (XSS)
<0.3.9 Not available 25 Dec, 2017
  • H
Cross-site Scripting (XSS)
<0.3.9 Not available 25 Dec, 2017
  • H
Regular Expression Denial of Service (ReDoS)
<0.3.9 Available 21 Sep, 2017
  • H
Cross-site Scripting (XSS) via Data URIs
<0.3.7 Available 30 Jan, 2017
  • M
Multiple Content Injection Vulnerabilities
<=0.3.0 Not available 30 Jan, 2014
  • H
Regular Expression Denial of Service (DoS)
<0.3.4 Available 30 Jan, 2014
  • M
VBScript Content Injection
<0.3.3 Available 30 Jan, 2014