VYPR

npm package

microlight

pkg:npm/microlight

Vulnerabilities (2)

  • CVE-2025-45526LowJun 17, 2025
    affected <= 0.0.7

    A denial of service (DoS) vulnerability has been identified in the JavaScript library microlight version 0.0.7. This library, used for syntax highlighting, does not limit the size of textual content it processes in HTML elements with the microlight class. When excessively large c

  • CVE-2025-45525LowJun 17, 2025
    affected <= 0.0.7

    A NULL pointer dereference vulnerability has been identified in the JavaScript library microlight version 0.0.7, a lightweight syntax highlighting library. When processing elements with non-standard CSS color values, the library fails to validate the result of a regular expressio