4 matches found
DEBIAN-CVE-2015-3295
markdown-it before 4.1.0 does not block data: URLs...
CVE-2015-3295
markdown-it before 4.1.0 does not block data: URLs...
CVE-2015-3295
markdown-it before 4.1.0 does not block data: URLs, enabling potential HTML injection when rendering user-provided content. Affected: markdown-it versions prior to 4.1.0. Root cause: failure to block data: URLs in the rendering process. Impact: authoring or rendering content could lead to uninten...
CVE-2015-3295
markdown-it before 4.1.0 does not block data: URLs...