VYPR

npm package

nodebb-plugin-markdown

pkg:npm/nodebb-plugin-markdown

Vulnerabilities (1)

  • CVE-2015-3296MedSep 21, 2017
    affected < 5.1.1fixed 5.1.1

    Multiple cross-site scripting (XSS) vulnerabilities in NodeBB before 0.7 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javascript: or (2) data: URLs.