Skip to main content

Mathjax

2 CVEs product

Monthly

CVE-2023-39663 npm HIGH POC This Week

Mathjax up to v2.7.9 was discovered to contain two Regular expression Denial of Service (ReDoS) vulnerabilities in MathJax.js via the components pattern and markdownPattern. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Mathjax
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2018-1999024 npm MEDIUM POC PATCH This Month

{} macro that can result in Potentially untrusted Javascript running within a web browser. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Mathjax
NVD GitHub
CVSS 3.0
5.4
EPSS
1.3%
EPSS 1% CVSS 7.5
HIGH POC This Week

Mathjax up to v2.7.9 was discovered to contain two Regular expression Denial of Service (ReDoS) vulnerabilities in MathJax.js via the components pattern and markdownPattern. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Mathjax
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC PATCH This Month

{} macro that can result in Potentially untrusted Javascript running within a web browser. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Mathjax
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy