{"id":"PYSEC-2020-235","details":"python-markdown2 before 1.0.1.14 has multiple cross-site scripting (XSS) issues.","aliases":["CVE-2009-3724","GHSA-72cx-5ff9-4hhc","SNYK-PYTHON-PYRAD-40000"],"modified":"2023-11-01T04:44:09.910560Z","published":"2020-01-15T21:15:00Z","references":[{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2009/10/29/5"},{"type":"ADVISORY","url":"https://snyk.io/vuln/SNYK-PYTHON-PYRAD-40000"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-72cx-5ff9-4hhc"}],"affected":[{"package":{"name":"markdown2","ecosystem":"PyPI","purl":"pkg:pypi/markdown2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.1.14"}]}],"versions":["1.0.1.10","1.0.1.11","1.0.1.12","1.0.1.13","1.0.1.6","1.0.1.7","1.0.1.8","1.0.1.9"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/markdown2/PYSEC-2020-235.yaml"}}],"schema_version":"1.7.3"}