DEBIAN-CVE-2014-3743
- Source
- https://security-tracker.debian.org/tracker/CVE-2014-3743
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2014-3743.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2014-3743
- Upstream
- Published
- 2020-01-06T20:15:11.697Z
- Modified
- 2026-04-28T20:13:20.226833Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Multiple cross-site scripting (XSS) vulnerabilities in the Marked module before 0.3.1 for Node.js allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) gfm codeblocks (language) or (2) javascript url's.
- References
Affected packages
Debian:11 / node-marked
Package
- Name
- node-marked
- Purl
- pkg:deb/debian/node-marked?arch=source
Debian:12 / node-marked
Package
- Name
- node-marked
- Purl
- pkg:deb/debian/node-marked?arch=source
Debian:13 / node-marked
Package
- Name
- node-marked
- Purl
- pkg:deb/debian/node-marked?arch=source
Debian:14 / node-marked
Package
- Name
- node-marked
- Purl
- pkg:deb/debian/node-marked?arch=source