VYPR

Mjml

by Mjmlio

npm: mjml

Source repositories

CVEs (1)

  • CVE-2025-67898MedDec 14, 2025
    risk 0.22cvss 4.5epss 0.00

    MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.