erusev/parsedown Security Advisories for 0.4.0 (2)
-
[HIGH] Class-Name Injection
PKSA-x5pn-v2gj-rt1g CVE-2019-10905 GHSA-62m3-fc7f-jpp8
Affected version: <1.7.2
Reported by:
FriendsOfPHP/security-advisories, GitHub -
[MEDIUM] Cross-Site Scripting
PKSA-m4n3-db3z-ggrg CVE-2018-1000162 GHSA-qgpv-86r3-87fh
Affected version: <1.7.0
Reported by:
FriendsOfPHP/security-advisories, GitHub