CVE-2026-5160
A flaw was found in github.com/yuin/goldmark/renderer/html. This Cross-site Scripting XSS vulnerability allows a remote attacker to execute arbitrary scripts in the context of applications that render a malicious URL. The flaw stems from an improper ordering of URL validation and normalization,...