qiita-markdown 0.27.0
2 security vulnerabilities
found in version
0.27.0
XSS in qiita-markdown
medium severity CVE-2021-28833
medium severity
CVE-2021-28833
Patched versions:
>= 0.34.0
Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796.
Cross-Site Scripting in Qiita::Markdown
medium severity CVE-2021-28796
medium severity
CVE-2021-28796
Patched versions:
>= 0.33.0
Increments Qiita::Markdown before 0.33.0 allows XSS in transformers.
No officially reported memory leakage issues detected.
This gem version does not have any officially reported memory leaked issues.
No license issues detected.
This gem version has a license in the gemspec.
This gem version is available.
This gem version has not been yanked and is still available for usage.