markdown-it is vulnerable to regular expression denial of service (DoS) attacks. A malicious user is able to pass a crafted regex statement through the replace
function in lib/common/html_re.js
, causing an application crash due to inefficient regular expression complexity.