Lucene search
K

3 matches found

Vulnrichment
Vulnrichment
added 2026/05/08 3:22 p.m.10 views

CVE-2026-41591 Marko: XSS via case-insensitive script/style closing tag bypass in runtime HTML escaping

Marko is a declarative, HTML-based language for building web apps. Prior to marko version 5.38.36 and prior to @marko/runtime-tags 6.0.164, when dynamic text is interpolated into a or tag the Marko runtime failed to prevent tag breakout when the closing tag used non-lowercase casing. An attacker...

6.4CVSS5.6AI score0.00195EPSS
Exploits0References1
OSV
OSV
added 2026/05/08 3:22 p.m.4 views

CVE-2026-41591 Marko: XSS via case-insensitive script/style closing tag bypass in runtime HTML escaping

Marko is a declarative, HTML-based language for building web apps. Prior to marko version 5.38.36 and prior to @marko/runtime-tags 6.0.164, when dynamic text is interpolated into a or tag the Marko runtime failed to prevent tag breakout when the closing tag used non-lowercase casing. An attacker...

6.4CVSS5.7AI score0.00195EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/22 7:55 p.m.16 views

Marko: XSS via case-insensitive script/style closing tag bypass in runtime HTML escaping

Summary When dynamic text is interpolated into a or tag the Marko runtime failed to prevent tag breakout when the closing tag used non-lowercase casing. An attacker able to place input inside a or block could break out of the tag with , , etc. and inject arbitrary HTML/JavaScript, resulting in...

6.4CVSS5.8AI score0.00195EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder