Launch Week Day 1: Announcing Security Design Review

Cross-site Scripting in Mermaid

GHSA-4f6x-49g2-99fm · CVE-2021-35513

Published Dec 10, 2021 · Modified Nov 8, 2023

Description

Mermaid before 8.11.0 allows XSS when the antiscript feature is used.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes