marked@0.3.7 vulnerabilities

A markdown parser built for speed

View on npm

Latest version

 1.1.0

First published

 9 years ago

Latest version published

 9 days ago

Licenses detected

  • license: MIT >=0
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the marked@0.3.7 package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • M
Regular Expression Denial of Service (ReDoS) 		<0.4.0 Not available 04 Jul, 2019
  • M
Regular Expression Denial of Service (ReDoS) 		>=0.1.3 <0.6.2 Not available 07 Apr, 2019
  • H
Regular Expression Denial of Service (ReDoS) 		<0.3.18 Not available 27 Feb, 2018
  • H
Cross-site Scripting (XSS) 		<0.3.9 Not available 25 Dec, 2017
  • M
Cross-site Scripting (XSS) 		<0.3.9 Not available 25 Dec, 2017
  • H
Regular Expression Denial of Service (ReDoS) 		<0.3.9 Available 21 Sep, 2017
Report a new vulnerability