EPSS
Percentile
34.9%
markdown2 is vulnerable to cross-site scripting (XSS) attacks. These attacks are possible through the IMG tag, even when the safe_mode feature is enabled. They can be conducted by omitting the > from the start of the tag.
IMG
safe_mode
>
github.com/trentm/python-markdown2/issues/285