marked Project marked 0.0.1

CPE Details

marked Project marked 0.0.1
0.0.1
2018-01-12
14h24 +00:00
2019-09-23
16h07 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:marked_project:marked:0.0.1:*:*:*:*:*:*:*

Informations

Vendor

marked_project

Product

marked

Version

0.0.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2017-16114 2018-06-07 02h00 +00:00 The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds.
7.5
High
CVE-2017-1000427 2018-01-02 22h00 +00:00 marked version 0.3.6 and earlier is vulnerable to an XSS attack in the data: URI parser.
6.1
Medium
CVE-2015-1370 2015-01-27 17h00 +00:00 Incomplete blacklist vulnerability in marked 0.3.2 and earlier for Node.js allows remote attackers to conduct cross-site scripting (XSS) attacks via a vbscript tag in a link.
4.3