ROOT-APP-PYPI-CVE-2023-26303 CVE-2023-26303 in rootio-markdown_it_py - Patched by Root

Root has patched CVE-2023-26303 in the rootio-markdownitpy package for Root:PyPI. Multiple fixed versions available...

PT-2026-8293

CVE-2026-26303 - Apache HTTP Server Cross-Site Request Forgery CSRF CVE ID : CVE-2026-26303 Published : Feb. 14, 2026, 4:15 a.m. | 1 hour, 26 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline,...

Linux Distros Unpatched Vulnerability : CVE-2023-26303

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input...

CVE-2024-26303

Authenticated Denial of Service Vulnerability in ArubaOS-Switch SSH Daemon...

CVE-2022-26303

An external config control vulnerability exists in the OAS Engine SecureAddUser functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to the creation of an OAS user account. An attacker can send a sequence of requests to trigge...

7ghost (>=4.11.16 <=4.11.46), @abhilashgoswami/block-text (>=0.0.6 <=0.0.7) +225 more potentially affected by CVE-2020-26303 via insane (>=2.4.0 <=2.6.2)

insane NPM version =2.4.0, =4.11.16, =0.0.6, =0.0.8, =8.3.28-ST.0, =0.2.0, =0.0.2-canary.1.10.0, =2.35.0, =14.42.1-canary.1016.19978.0, =0.1.0, =22.0.0, =0.1.0, =1.9.3, =0.1.0, =0.13.85 and more Source cves: CVE-2020-26303 Source advisory: OSV:GHSA-W455-MFQ9-HF74...

CVE-2020-26303

insane is a whitelist-oriented HTML sanitizer. Versions 2.6.2 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...

CVE-2020-26303 GHSL-2020-289: Regular Expression Denial of Service (ReDoS) in insane

insane is a whitelist-oriented HTML sanitizer. Versions 2.6.2 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...

CVE-2020-26303 GHSL-2020-289: Regular Expression Denial of Service (ReDoS) in insane

insane is a whitelist-oriented HTML sanitizer. Versions 2.6.2 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...

CVE-2024-26303

Authenticated Denial of Service Vulnerability in ArubaOS-Switch SSH Daemon...

CVE-2024-26303

CVE-2024-26303 describes an authenticated denial-of-service against the ArubaOS-Switch SSH Daemon. The vulnerability is triggered by an attacker with high privileges over the network, with no user interaction, causing an impact to availability (CVSSv3.1 base score 4.9, MEDIUM). Affected component...

a2grunnerp (>=0.1.0 <=0.1.8), apidriver (>=0.4.0 <=0.9.5) +73 more potentially affected by CVE-2023-26303 via markdown-it-py (>=0.4.6 <=2.1.0)

markdown-it-py PYPI version =0.4.6, =0.1.0, =0.4.0, =1.0.148, =1.1.13, =0.1.0, =0.0.1, =3.72.0, =2.2.0, =0.10.0, =2.2.0, =0.0.5, =0.0.13 - gamesdb-api =0.3.1 and more Source cves: CVE-2023-26303 Source advisory: OSV:GHSA-VRJV-MXR7-VJF8...

CVE-2023-26303

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input...

a2grunnerp (>=0.1.0 <=0.1.8), apidriver (>=0.4.0 <=0.9.5) +73 more potentially affected by CVE-2023-26303 via markdown-it-py (>=0.4.6 <=2.1.0)

markdown-it-py PYPI version =0.4.6, =0.1.0, =0.4.0, =1.0.148, =1.1.13, =0.1.0, =0.0.1, =3.72.0, =2.2.0, =0.10.0, =2.2.0, =0.0.5, =0.0.13 - gamesdb-api =0.3.1 and more Source cves: CVE-2023-26303 Source advisory: OSV:PYSEC-2023-24...

CVE-2023-26303

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input...

CVE-2023-26303

CVE-2023-26303 affects markdown-it-py before v2.2.0. The vulnerability allows a denial of service when an attacker forces null assertions via specially crafted input. Affected: markdown-it-py (Python). Root cause: handling of null assertions leading to DoS. Impact per sources indicates availabili...

CVE-2023-26303 markdown-it-py crash on null assertions

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input...

CVE-2022-26303

An external config control vulnerability exists in the OAS Engine SecureAddUser functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to the creation of an OAS user account. An attacker can send a sequence of requests to trigge...

CVE-2022-26303

Open Automation Software OAS Platform V16.00.0112 contains an external config control vulnerability in the OAS Engine SecureAddUser function. The issue allows unauthenticated network requests to create new OAS user accounts, via a sequence targeting TCP/58727, with a resulting account validated b...

CVE-2021-26303

creationtimestamp| type| source ---|---|--- 2021-01-29 08:25:18+00:00| seen| https://t.me/cibsecurity/22824...