{"vulnerability": "CVE-2021-21306", "sightings": [{"uuid": "143a0092-291e-418b-8ade-a914e59feb2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21306", "type": "seen", "source": "https://t.me/cibsecurity/23280", "content": "\u203c CVE-2021-21306 \u203c\n\nMarked is an open-source markdown parser and compiler (npm package \"marked\"). In marked from version 1.1.1 and before version 2.0.0, there is a Regular expression Denial of Service vulnerability. This vulnerability can affect anyone who runs user generated code through marked. This vulnerability is fixed in version 2.0.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-09T00:39:28.000000Z"}]}