markdown-it contributors

1 exploit Active since Aug 2025
CVE-2025-7969 WRITEUP MEDIUM WRITEUP
markdown-it 14.1.0 - Cross-Site Scripting in Renderer
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in markdown-it allows Cross-Site Scripting (XSS). This vulnerability is associated with program files lib/renderer.mjs. This issue affects markdown-it: 14.1.0. NOTE: the Supplier does not consider this issue to be a vulnerability.
CVSS 6.1