pkg:npm/marked

11 total CVEsHIGH6MEDIUM4

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-41680Marked Vulnerable to OOM Denial of Service via Infinite Recursion in marked Tokenizer
    >= 18.0.0, < 18.0.2
  • HIGH7.5CVE-2018-25110Marked allows Regular Expression Denial of Service (ReDoS) attacks
    from 0, < 0.3.17
  • HIGH7.5CVE-2022-21681Inefficient Regular Expression Complexity in marked
    from 0, < 4.0.10
  • HIGH7.5CVE-2022-21680Inefficient Regular Expression Complexity in marked
    from 0, < 4.0.10
  • HIGH7.5CVE-2017-16114Regular Expression Denial of Service in marked
    from 0, < 0.3.9
  • HIGH7.5CVE-2015-8854Regular Expression Denial of Service in marked
    from 0, < 0.3.4
  • MEDIUM6.1CVE-2014-3743Multiple Content Injection Vulnerabilities in marked
    from 0, < 0.3.1
  • MEDIUM6.1CVE-2016-10531Sanitization bypass using HTML Entities in marked
    from 0, < 0.3.6
  • MEDIUM6.1CVE-2017-1000427Marked vulnerable to XSS from data URIs
    from 0, < 0.3.7
  • MEDIUM5.3CVE-2021-21306Regular Expression Denial of Service (REDoS) in Marked
    >= 1.1.1, < 2.0.0
  • CVE-2015-1370VBScript Content Injection in marked
    from 0, < 0.3.3