Vulnerabilities > Parsedown

DATE	CVE	VULNERABILITY TITLE	RISK
2019-04-06	CVE-2019-10905	Cross-site Scripting vulnerability in Parsedown Parsedown before 1.7.2, when safe mode is used and HTML markup is disabled, might allow attackers to execute arbitrary JavaScript code if a script (already running on the affected page) executes the contents of any element with a specific class. network high complexity parsedown CWE-79	8.1
2018-04-18	CVE-2018-1000162	Cross-site Scripting vulnerability in Parsedown Parsedown version prior to 1.7.0 contains a Cross Site Scripting (XSS) vulnerability in `setMarkupEscaped` for escaping HTML that can result in JavaScript code execution. network low complexity parsedown CWE-79	6.1

Vulnerabilities > Parsedown {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Parsedown"}]}