discount 安全漏洞

discount is a Markdown language parsing and conversion tool developed by Orc developers. Versions of discount 3.0.1.2 and earlier contain security vulnerabilities. These vulnerabilities stem from the compile function in the markdown.c file being manipulated in a way that allows uncontrolled...

EUVD-2025-177067

Malicious code in prettier-plugin-markdown-tool-sociobiology-css-minimizer-webpack-plugin npm...

EUVD-2025-21892

Malicious code in bioql PyPI...

CVE-2025-54075

MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component. Prior to version 0.17.2, a remote script-inclusion / stored cross-site scripting vulnerability in @nuxtjs/mdc lets a Markdown author inject a element. The tag rewrites how all subsequent relative...

CVE-2025-54075 mdc vulnerable to XSS in markdown rendering bypassing HTML filter. (N°4)

MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component. Prior to version 0.17.2, a remote script-inclusion / stored cross-site scripting vulnerability in @nuxtjs/mdc lets a Markdown author inject a element. The tag rewrites how all subsequent relative...

CVE-2025-6492

A vulnerability has been found in MarkText up to 0.17.1 and classified as problematic. Affected by this vulnerability is the function getRecommendTitleFromMarkdownString of the file marktext/src/main/utils/index.js. The manipulation leads to inefficient regular expression complexity. The attack c...

PT-2024-38546

Name of the Vulnerable Software and Affected Versions: yzane vscode-markdown-pdf version 1.5.0 Description: A problematic issue has been found in the Markdown File Handler component, leading to pathname traversal. The manipulation requires a local attack. The exploit has been disclosed to the...