Количество 2
Количество 2
CVE-2021-23639
около 4 лет назад
The package md-to-pdf before 5.0.0 are vulnerable to Remote Code Execution (RCE) due to utilizing the library gray-matter to parse front matter content, without disabling the JS engine.
CVSS3: 9.8
EPSS: Средний
GHSA-x949-7cm6-fm6p
около 4 лет назад
Code Injection in md-to-pdf.
CVSS3: 9.8
EPSS: Средний
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-23639 The package md-to-pdf before 5.0.0 are vulnerable to Remote Code Execution (RCE) due to utilizing the library gray-matter to parse front matter content, without disabling the JS engine. | CVSS3: 9.8 | 25% Средний | около 4 лет назад |
| GHSA-x949-7cm6-fm6p Code Injection in md-to-pdf. | CVSS3: 9.8 | 25% Средний | около 4 лет назад |
Уязвимостей на страницу
20