marked Project marked 0.1.5

CPE Details

marked Project marked 0.1.5
0.1.5
2018-01-12
14h24 +00:00
2019-09-23
16h07 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:marked_project:marked:0.1.5:*:*:*:*:*:*:*

Informations

Vendor

marked_project

Product

marked

Version

0.1.5

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2017-16114 2018-06-07 02h00 +00:00 The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds.
7.5
Haute
CVE-2017-1000427 2018-01-02 22h00 +00:00 marked version 0.3.6 and earlier is vulnerable to an XSS attack in the data: URI parser.
6.1
Moyen
CVE-2015-1370 2015-01-27 17h00 +00:00 Incomplete blacklist vulnerability in marked 0.3.2 and earlier for Node.js allows remote attackers to conduct cross-site scripting (XSS) attacks via a vbscript tag in a link.
4.3