Known Vulnerabilities for products from Markdown-it Project
Listed below are 4 of the newest known vulnerabilities associated with the vendor "Markdown-it Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56696 json | Not Provided | 2026-06-23 | 2026-06-23 | |
| CVE-2026-50178 json | Not Provided | 2026-06-22 | 2026-06-22 | |
| CVE-2026-48988 json | markdown-it is a Markdown parser. Versions 14.1.1 and below contain a denial-of-service vulnerability when typographer: true ... | Not Provided | 2026-06-17 | 2026-06-24 |
| CVE-2026-48704 json | Not Provided | 2026-06-24 | 2026-06-24 | |
| CVE-2026-44696 json | Not Provided | 2026-06-26 | 2026-06-27 | |
| CVE-2026-9472 json | Not Provided | 2026-05-25 | 2026-05-25 | |
| CVE-2022-21670 json | markdown-it is a Markdown parser. Prior to version 1.3.2, special patterns with length greater than 50 thousand characterss c... | 5.3 - MEDIUM | 2022-01-10 | 2023-07-24 |
| CVE-2015-10005 json | A vulnerability was found in markdown-it up to 2.x. It has been classified as problematic. Affected is an unknown function of... | 7.5 - HIGH | 2022-12-27 | 2023-11-07 |
| CVE-2015-3295 json | markdown-it before 4.1.0 does not block data: URLs. | Not Provided | 2017-06-07 | 2025-04-20 |
Known software with vulnerabilities from Markdown-it Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Markdown-it Project | Markdown-it | 10.0.0 |