Search for packages
| purl | pkg:npm/marked@0.2.3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1pxm-8vn6-xbgk
Aliases: GHSA-32vw-r77c-gm67 |
Withdrawn Advisory: marked cross-site scripting vulnerability Versions 0.3.2 and earlier of marked are affected by a cross-site scripting vulnerability even when sanitize:true is set. |
Affected by 10 other vulnerabilities. |
|
VCID-3hp9-cv2c-r7gc
Aliases: CVE-2014-3743 GHSA-9cw2-jqp5-7x39 |
Multiple Content Injection Vulnerabilities Marked comes with an option to sanitize user output to help protect against content injection attacks. ```sanitize: true``` Even if this option is set, marked is vulnerable to content injection in multiple locations if untrusted user input is allowed to be provided into marked and that output is passed to the browser. Injection is possible in two locations - gfm codeblocks (language) - javascript url's |
Affected by 13 other vulnerabilities. |
|
VCID-3nt4-689k-qkan
Aliases: CVE-2015-8854 GHSA-hjcp-j389-59ff |
Regular Expression Denial of Service Marked 0.3.3 and earlier is vulnerable to regular expression denial of service (ReDoS) when certain types of input are passed in to be parsed. "The Regular expression Denial of Service (ReDoS) is a Denial of Service attack, that exploits the fact that most Regular Expression implementations may reach extreme situations that cause them to work very slowly (exponentially related to input size). An attacker can then cause a program using a Regular Expression to enter these extreme situations and then hang for a very long time." [1] Marked's catastrophic backtracking issue for the `em` inline rule has now been patched in 0.3.4. |
Affected by 9 other vulnerabilities. |
|
VCID-5bd3-3bhj-e7hr
Aliases: CVE-2016-10531 GHSA-vfvf-mqq8-rwqc |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') marked is an application that is meant to parse and compile markdown. Due to the way that marked parses input, specifically HTML entities, it's possible to bypass marked's content injection protection (`sanitize: true`) to inject a `javascript:` URL. This flaw exists because `&#xNNanything;` gets parsed to what it could and leaves the rest behind, resulting in just `anything;` being left. |
Affected by 7 other vulnerabilities. |
|
VCID-7hw9-qfnv-gkcr
Aliases: GMS-2016-24 |
Sanitization bypass using HTML Entities Due to the way that marked parses input, specifically HTML entities, it's possible to bypass marked's content injection protection (`sanitize: true`) to inject a `javascript:` URL. This flaw exists because `&#xNNanything;` gets parsed to what it could and leaves the rest behind, resulting in just `anything;` being left. |
Affected by 7 other vulnerabilities. |
|
VCID-8sge-yv9a-gyf7
Aliases: GMS-2017-212 |
Regular Expression Denial of Service The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds. |
Affected by 3 other vulnerabilities. |
|
VCID-ahdy-enkb-qucy
Aliases: CVE-2017-17461 GHSA-crmx-v835-hcp4 |
Moderate severity vulnerability that affects marked ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. |
Affected by 3 other vulnerabilities. |
|
VCID-aseb-q28a-c3bg
Aliases: GMS-2015-1 |
Regular expression denial of service Marked is vulnerable to regular expression denial of service (ReDoS) when certain types of input are passed in to be parsed. |
Affected by 9 other vulnerabilities. |
|
VCID-awq5-34c9-tkes
Aliases: CVE-2022-21681 GHSA-5v2h-r2cx-5xgj |
Inefficient Regular Expression Complexity The regular expression `inline.reflinkSearch` may cause catastrophic backtracking against some strings and lead to a denial of service (DoS). Anyone who runs untrusted markdown through a vulnerable version of marked and does not use a worker with a time limit may be affected. This issue is patched As a workaround, avoid running untrusted markdown through marked or run marked on a worker thread and set a reasonable time limit to prevent draining resources. |
Affected by 0 other vulnerabilities. |
|
VCID-b8e2-2cre-2bbt
Aliases: CVE-2018-25110 GHSA-p9wx-2529-fp83 |
Marked allows Regular Expression Denial of Service (ReDoS) attacks Marked prior to version 0.3.17 is vulnerable to a Regular Expression Denial of Service (ReDoS) attack due to catastrophic backtracking in several regular expressions used for parsing HTML tags and markdown links. An attacker can exploit this vulnerability by providing specially crafted markdown input, such as deeply nested or repetitively structured brackets or tag attributes, which cause the parser to hang and lead to a Denial of Service. |
Affected by 3 other vulnerabilities. |
|
VCID-edfz-a78w-13dh
Aliases: CVE-2017-1000427 GHSA-7px7-7xjx-hxm8 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') marked is vulnerable to an XSS attack in the data: URI parser. |
Affected by 5 other vulnerabilities. |
|
VCID-gzan-ec95-93ex
Aliases: CVE-2017-16114 GHSA-x5pg-88wf-qq4p |
Uncontrolled Resource Consumption The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds. |
Affected by 3 other vulnerabilities. |
|
VCID-xdzq-65a6-67h5
Aliases: CVE-2014-1850 |
Multiple Content Injection Vulnerabilities Marked comes with an option to sanitize user output to help protect against content injection attacks. ```sanitize: true``` Even if this option is set, marked is vulnerable to content injection in multiple locations if untrusted user input is allowed to be provided into marked and that output is passed to the browser. Injection is possible in two locations - gfm codeblocks (language) - javascript url's |
Affected by 13 other vulnerabilities. |
|
VCID-xf3w-qz3m-h7fv
Aliases: CVE-2022-21680 GHSA-rrrm-qjm4-v8hf |
Inefficient Regular Expression Complexity The regular expression `block.def` may cause catastrophic backtracking against some strings and lead to a regular expression denial of service (ReDoS). Anyone who runs untrusted markdown through a vulnerable version of marked and does not use a worker with a time limit may be affected. This issue is patched As a workaround, avoid running untrusted markdown through marked or run marked on a worker thread and set a reasonable time limit to prevent draining resources. |
Affected by 0 other vulnerabilities. |
|
VCID-y6xb-gmwg-7qbc
Aliases: CVE-2015-1370 GHSA-cfjh-p3g4-3q2f |
VBScript Content Injection Marked 0.3.2 and earlier is vulnerable to content injection even when `sanitize: true` is enabled. `[xss link](vbscript:alert(1))` will get a link `<a href="vbscript:alert(1)">xss link</a>` this script does not work in IE 11 edge mode, but works in IE 10 compatibility view. |
Affected by 10 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||