Trevor Buckner

1 exploit Active since Feb 2021
CVE-2021-21306 WRITEUP MEDIUM WRITEUP
marked 1.1.1-2.0.0 - Regular Expression Denial of Service
Marked is an open-source markdown parser and compiler (npm package "marked"). In marked from version 1.1.1 and before version 2.0.0, there is a Regular expression Denial of Service vulnerability. This vulnerability can affect anyone who runs user generated code through marked. This vulnerability is fixed in version 2.0.0.
CVSS 5.3