CNNVD-202508-2587 Information

CNNVD ID

CNNVD-202508-2587

Related CVE

CVE-2025-7969

• CNNVD Published: 2025-08-21

Description (Chinese)

Markdown-It是Markdown it!开源的一个 Markdown 解析器。 Markdown-It 14.1.0版本存在安全漏洞，该漏洞源于输入中和不当，可能导致跨站脚本。

Description (English)

Markdown-It is an open source Markdown solver. There is a security loophole in version Markdown-It 14.1.0, which originates from inappropriate input and may lead to cross-site scripts.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Markdown it!

Published

2025-08-21

Last Modified

2026-02-24

References

https://fluidattacks.com/advisories/fito https://github.com/markdown-it/markdown-it/issues/1122 https://nvd.nist.gov/vuln/detail/CVE-2025-7969 https://access.redhat.com/security/cve/cve-2025-7969