CVE-2025-7969

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in markdown-it allows Cross-Site Scripting (XSS). This vulnerability is associated with program files lib/renderer.mjs. This issue affects markdown-it: 14.1.0. NOTE: the Supplier does not consider this issue to be a vulnerability.

Affected packages (1)

• Debian/node-markdown-itfrom 0

CVSS scores

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2025-7969