Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-48988 |
|
Vulnerability in markdown-it (CVE-2026-48988)
vulnerability in markdown-it (CVE-2026-48988). Risk of unauthorized operations or information disclosure. Exploitable via ``token.content``. Mitigation: upgrade to `14.2.0` or later.
|
| CVE-2015-3295 |
|
markdown-it before 4.1.0 does not block data: URLs.
markdown-it before 4.1.0 does not block data: URLs.
|