Download
| Alert*
|
oval:org.secpod.oval:def:1901180
marked is an application that is meant to parse and compile markdown. Due to the way that marked 0.3.5 and earlier parses input, specifically HTML entities, it"s possible to bypass marked"s content injection protection to inject a `javascript:` URL. This flaw exists because `&#xNNanything;` get ... oval:org.secpod.oval:def:118286 Install this for command line tool and man page. marked is a full-featured markdown compiler that can parse huge chunks of markdown without having to worry about caching the compiled output or blocking for an unnecessarily long time. marked is extremely fast and frequently outperforms similar markdo ... oval:org.secpod.oval:def:118282 Install this for command line tool and man page. marked is a full-featured markdown compiler that can parse huge chunks of markdown without having to worry about caching the compiled output or blocking for an unnecessarily long time. marked is extremely fast and frequently outperforms similar markdo ... |
