Lucene search
+L

12 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.13 views

EUVD-2024-3621

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00307EPSS
Exploits0References7
redhatcve
redhatcve
added 2025/05/23 6:37 a.m.6 views

CVE-2024-56510

@marp-team/marp-core is the core for Marp, which is the ecosystem to write your presentation with plain Markdown. Marp Core from v3.0.2 to v3.9.0 and v4.0.0, are vulnerable to cross-site scripting XSS due to improper neutralization of HTML sanitization. Marp Core v3.9.1 and v4.0.1 have been patch...

5.3CVSS5.3AI score0.00307EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2025/01/19 12:0 a.m.10 views

The vulnerability of the Markdown Marp Core presentation creation tool is related to insufficient protection of website structures, allowing attackers to perform cross-site scripting attacks.

The vulnerability of the Markdown-based presentation creation tool Marp Core is related to insufficient protection of the web page structure when processing HTML content. Exploiting this vulnerability could allow attackers to perform cross-site scripting attacks...

5.3CVSS5.2AI score0.00307EPSS
Exploits0References6Affected Software1
nvd
nvd
added 2024/12/26 9:15 p.m.13 views

CVE-2024-56510

@marp-team/marp-core is the core for Marp, which is the ecosystem to write your presentation with plain Markdown. Marp Core from v3.0.2 to v3.9.0 and v4.0.0, are vulnerable to cross-site scripting XSS due to improper neutralization of HTML sanitization. Marp Core v3.9.1 and v4.0.1 have been patch...

5.3CVSS0.00307EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2024/12/26 8:56 p.m.12 views

CVE-2024-56510 Marp Core allows XSS by improper neutralization of HTML sanitization

@marp-team/marp-core is the core for Marp, which is the ecosystem to write your presentation with plain Markdown. Marp Core from v3.0.2 to v3.9.0 and v4.0.0, are vulnerable to cross-site scripting XSS due to improper neutralization of HTML sanitization. Marp Core v3.9.1 and v4.0.1 have been patch...

5.3CVSS6AI score0.00307EPSS
Exploits0References5
cvelist
cvelist
added 2024/12/26 8:56 p.m.17 views

CVE-2024-56510 Marp Core allows XSS by improper neutralization of HTML sanitization

@marp-team/marp-core is the core for Marp, which is the ecosystem to write your presentation with plain Markdown. Marp Core from v3.0.2 to v3.9.0 and v4.0.0, are vulnerable to cross-site scripting XSS due to improper neutralization of HTML sanitization. Marp Core v3.9.1 and v4.0.1 have been patch...

5.3CVSS0.00307EPSS
Exploits0References5
cve
cve
added 2024/12/26 8:56 p.m.68 views

CVE-2024-56510

Marp Core vulnerability CVE-2024-56510 affects Marp Core versions from v3.0.2 to v3.9.0 and v4.0.0, where improper neutralization of HTML sanitization leads to Cross-Site Scripting (XSS). The issue is addressed in Marp Core v3.9.1 and v4.0.1. If immediate upgrading is not feasible, a workaround i...

5.3CVSS5.4AI score0.00307EPSS
Exploits0References5
osv
osv
added 2024/12/26 8:56 p.m.8 views

CVE-2024-56510 Marp Core allows XSS by improper neutralization of HTML sanitization

@marp-team/marp-core is the core for Marp, which is the ecosystem to write your presentation with plain Markdown. Marp Core from v3.0.2 to v3.9.0 and v4.0.0, are vulnerable to cross-site scripting XSS due to improper neutralization of HTML sanitization. Marp Core v3.9.1 and v4.0.1 have been patch...

5.3CVSS5.9AI score0.00307EPSS
Exploits0References7
github
github
added 2024/12/26 6:25 p.m.14 views

Marp Core allows XSS by improper neutralization of HTML sanitization

Marp Core @marp-team/marp-core from v3.0.2 to v3.9.0 and v4.0.0, are vulnerable to cross-site scripting XSS due to improper neutralization of HTML sanitization. Impact Marp Core includes an HTML sanitizer with allowlist support. In the affected versions, the built-in allowlist is enabled by...

5.3CVSS6.1AI score0.00307EPSS
Exploits0References7Affected Software1
osv
osv
added 2024/12/26 6:25 p.m.17 views

GHSA-X52F-H5G4-8QV5 Marp Core allows XSS by improper neutralization of HTML sanitization

Marp Core @marp-team/marp-core from v3.0.2 to v3.9.0 and v4.0.0, are vulnerable to cross-site scripting XSS due to improper neutralization of HTML sanitization. Impact Marp Core includes an HTML sanitizer with allowlist support. In the affected versions, the built-in allowlist is enabled by...

5.3CVSS5.3AI score0.00307EPSS
Exploits0References7
cnnvd
cnnvd
added 2024/12/26 12:0 a.m.5 views

marp-core 跨站脚本漏洞

marp-core is a Marp open source core for a Marp converter. A cross-site scripting vulnerability exists in marp-core versions v3.0.2 through v3.9.0 and v4.0.0, which stems from improper neutralization of HTML cleanup and is vulnerable to cross-site scripting attacks...

5.3CVSS5.8AI score0.00307EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2022/01/23 12:0 a.m.4 views

PT-2022-7696 · Npm · @Marp-Team/Marp-Core

Name of the Vulnerable Software and Affected Versions: @marp-team/marp-core versions 3.0.2 through 3.9.0 @marp-team/marp-core version 4.0.0 Description: The issue is related to cross-site scripting XSS due to improper neutralization of HTML sanitization. This can allow an attacker to conduct...

5.3CVSS5.7AI score0.00307EPSS
Exploits0References14
Rows per page
Query Builder