Vulnerabilities > Parsedown > Parsedown > 1.7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-04-06 | CVE-2019-10905 | Cross-site Scripting vulnerability in Parsedown Parsedown before 1.7.2, when safe mode is used and HTML markup is disabled, might allow attackers to execute arbitrary JavaScript code if a script (already running on the affected page) executes the contents of any element with a specific class. | 6.8 |