Lucene search

CVE-2018-1000162

🗓️ 18 Apr 2018 19:00:29Reported by [email protected]Type

Parsedown version prior to 1.7.0 has a Cross Site Scripting vulnerabilit

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 15
Fedora	[SECURITY] Fedora 29 Update: php-erusev-parsedown-1.7.1-1.fc29	6 Mar 201906:58	–	fedora
Fedora	[SECURITY] Fedora 28 Update: php-erusev-parsedown-1.7.1-1.fc28	6 Mar 201915:29	–	fedora
Veracode	Cross-site Scripting (XSS)	25 Sep 201710:59	–	veracode
Prion	Cross site scripting	18 Apr 201819:29	–	prion
Friends Of PHP	Cross-Site Scripting	1 Jan 197000:00	–	friendsofphp
Friends Of PHP	Cross-Site Scripting	1 Jan 197000:00	–	friendsofphp
Github Security Blog	Cross-site Scripting in Parsedown	30 Mar 202218:26	–	github
Cvelist	CVE-2018-1000162	18 Apr 201819:00	–	cvelist
OpenVAS	Fedora Update for php-erusev-parsedown FEDORA-2019-009fdcfb60	7 Mar 201900:00	–	openvas
OpenVAS	Fedora Update for php-erusev-parsedown FEDORA-2019-b02e9bf467	7 May 201900:00	–	openvas

Nvd

Node

parsedown parsedownRange<1.7.0

Source	Link
github	www.github.com/erusev/parsedown/pull/495
github	www.github.com/Roave/SecurityAdvisories/issues/44

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Apr 2018 19:29Current

6.2Medium risk

Vulners AI Score6.2

CVSS24.3

CVSS36.1

EPSS0.00396

CWE-79