Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/marked@0.6.0
purl pkg:npm/marked@0.6.0
Next non-vulnerable version 4.0.10
Latest non-vulnerable version 18.0.2
Risk 4.0
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-9wvm-us1k-6bhs
Aliases:
CVE-2022-21680
GHSA-rrrm-qjm4-v8hf
Inefficient Regular Expression Complexity in marked
4.0.10
Affected by 0 other vulnerabilities.
VCID-cfgq-1uqs-8bgv
Aliases:
GHSA-ch52-vgq2-943f
GMS-2020-746
Regular Expression Denial of Service in marked
0.7.0
Affected by 2 other vulnerabilities.
VCID-qf5t-nkv6-duac
Aliases:
CVE-2022-21681
GHSA-5v2h-r2cx-5xgj
Inefficient Regular Expression Complexity in marked
4.0.10
Affected by 0 other vulnerabilities.
VCID-wrqu-2wqd-zybd
Aliases:
GHSA-xf5p-87ch-gxw2
GMS-2019-134
Marked ReDoS due to email addresses being evaluated in quadratic time
0.6.2
Affected by 3 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-13T16:41:40.543169+00:00 GitLab Importer Affected by VCID-cfgq-1uqs-8bgv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/marked/GMS-2020-746.yml 38.6.0
2026-06-12T17:55:53.362197+00:00 GitLab Importer Affected by VCID-9wvm-us1k-6bhs https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/marked/CVE-2022-21680.yml 38.6.0
2026-06-12T17:55:50.199489+00:00 GitLab Importer Affected by VCID-qf5t-nkv6-duac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/marked/CVE-2022-21681.yml 38.6.0
2026-06-12T17:11:52.872962+00:00 GitLab Importer Affected by VCID-wrqu-2wqd-zybd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/marked/GMS-2019-134.yml 38.6.0