Vulnerabilities > Gatsbyjs > Gatsby > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-10 | CVE-2022-25863 | Deserialization of Untrusted Data vulnerability in Gatsbyjs Gatsby 3.0.0 The package gatsby-plugin-mdx before 2.14.1, from 3.0.0 and before 3.15.2 are vulnerable to Deserialization of Untrusted Data when passing input through to the gray-matter package, due to its default configurations that are missing input sanitization. | 9.8 |