VYPR

Mdc

by Nuxt Modules

Source repositories

CVEs (2)

  • CVE-2025-24981CriFeb 6, 2025
    risk 0.54cvss 9.3epss 0.01

    MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component. In affected versions unsafe parsing logic of the URL from markdown can lead to arbitrary JavaScript code due to a bypass to the existing guards around the `javascript:` protocol…

  • CVE-2025-54075HigJul 18, 2025
    risk 0.47cvss 8.3epss 0.00

    MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component. Prior to version 0.17.2, a remote script-inclusion / stored cross-site scripting vulnerability in @nuxtjs/mdc lets a Markdown author inject a ``…