A vulnerability described as problematic has been identified in showdown up to 2.1.0. Affected by this issue is some unknown functionality. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2026-59711. The attack can be launched remotely. No exploit exists.