npm package
gitbook
pkg:npm/gitbook
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-19596 | — | <= 2.6.9 | — | Dec 5, 2019 | GitBook through 2.6.9 allows XSS via a local .md file. | ||
| CVE-2017-16019 | — | < 3.2.2 | 3.2.2 | Jun 4, 2018 | GitBook is a command line tool (and Node.js library) for building beautiful books using GitHub/Git and Markdown (or AsciiDoc). Stored Cross-Site-Scripting (XSS) is possible in GitBook before 3.2.2 by including code outside of backticks in any ebook. This code will be executed on |
- CVE-2019-19596Dec 5, 2019affected <= 2.6.9
GitBook through 2.6.9 allows XSS via a local .md file.
- CVE-2017-16019Jun 4, 2018affected < 3.2.2fixed 3.2.2
GitBook is a command line tool (and Node.js library) for building beautiful books using GitHub/Git and Markdown (or AsciiDoc). Stored Cross-Site-Scripting (XSS) is possible in GitBook before 3.2.2 by including code outside of backticks in any ebook. This code will be executed on