npm package
@diplodoc/search-extension
pkg:npm/%40diplodoc/search-extension
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-40201 | Med | 5.4 | >= 1.0.0, < 3.0.5 | 3.0.5 | May 1, 2026 | @diplodoc/search-extension 1.0.0 through 3.x before 3.0.3 allows stored XSS via the title in a .md file. |
- affected >= 1.0.0, < 3.0.5fixed 3.0.5
@diplodoc/search-extension 1.0.0 through 3.x before 3.0.3 allows stored XSS via the title in a .md file.