CVE-2022-41710
Markdownify 1.4.1 is vulnerable to information disclosure: when a client renders a malicious markdown file, an external attacker can read arbitrary local files. The root cause cited across multiple connected sources is an inadequate security posture for rendering content—specifically, the lack of...