CVE-2026-33347 | thephpleague commonmark up to 2.8.1 PHP Markdown Parser cross site scripting

Inserito da Angelo Barbosa | Mar 24, 2026 | CVE

A vulnerability categorized as problematic has been discovered in thephpleague commonmark up to 2.8.1. The affected element is an unknown function of the component PHP Markdown Parser. Executing a manipulation can lead to cross site scripting.

The identification of this vulnerability is CVE-2026-33347. The attack may be launched remotely. There is no exploit available.

It is advisable to upgrade the affected component.

CVE-2026-33347 | thephpleague commonmark up to 2.8.1 PHP Markdown Parser cross site scripting

Post correlati

CVE-2024-30235 | Themeisle Multiple Page Generator Plugin up to 3.4.0 on WordPress authorization

CVE-2026-20117 | Cisco Unified Contact Center Express up to UCCX 15.0.1 Web-based Management Interface cross site scripting (cisco-sa-cc-xss-MrNAH5Jh)

CVE-2025-6342 | code-projects Online Shoe Store 1.0 admin_football.php pid sql injection

CVE-2024-47807 | Jenkins OpenId Connect Authentication Plugin up to 4.354.v321ce67a_1de8 improper authentication