Moderate severity6.1OSV Advisory· Published Jul 6, 2026
showdown: Showdown: Cross-site scripting via unescaped metadata title allows arbitrary code execution
CVE-2026-59711
Description
showdown: Showdown: Cross-site scripting via unescaped metadata title allows arbitrary code execution
Affected products
22.1.0, 2.0.4, 2.0.3, …+ 1 more
- (no CPE)range: 2.1.0, 2.0.4, 2.0.3, …
- (no CPE)
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.