2 matches found
Cross-site Scripting (XSS)
Overview markdown2 is a fast and complete Python implementation of Markdown. Affected versions of this package are vulnerable to Cross-site Scripting XSS in the dolinkpatterns method within the Markdown class in lib/markdown2.py file, which insufficiently sanitizes image URLs. An attacker can...
Fedora 29 : python-markdown2 (2018-6a8028084d)
python-markdown2 2.3.6 - pull 282 Add TOC depth option - pull 283 Fix to add TOC html to output via CLI - pull 284 Do not remove anchors in safemode - pull 288 fixing cuddled-lists with a single list item - pull 292 Fix Wrong rendering of last list element - pull 295 link-patterns fix - pull 300...