Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

Related vulnerabilities

PYSEC-2020-235

Vulnerability from pysec - Published: 2020-01-15 21:15 - Updated: 2021-08-27 03:22
VLAI?
Details

python-markdown2 before 1.0.1.14 has multiple cross-site scripting (XSS) issues.

Impacted products
Name purl
markdown2 pkg:pypi/markdown2
Aliases
To clipboard 

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "markdown2",
        "purl": "pkg:pypi/markdown2"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.0.1.14"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "1.0.1.10",
        "1.0.1.11",
        "1.0.1.12",
        "1.0.1.13",
        "1.0.1.6",
        "1.0.1.7",
        "1.0.1.8",
        "1.0.1.9"
      ]
    }
  ],
  "aliases": [
    "CVE-2009-3724",
    "SNYK-PYTHON-PYRAD-40000",
    "GHSA-72cx-5ff9-4hhc"
  ],
  "details": "python-markdown2 before 1.0.1.14 has multiple cross-site scripting (XSS) issues.",
  "id": "PYSEC-2020-235",
  "modified": "2021-08-27T03:22:06.220553Z",
  "published": "2020-01-15T21:15:00Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://www.openwall.com/lists/oss-security/2009/10/29/5"
    },
    {
      "type": "ADVISORY",
      "url": "https://snyk.io/vuln/SNYK-PYTHON-PYRAD-40000"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/advisories/GHSA-72cx-5ff9-4hhc"
    }
  ]
}