CVE-2025-9670 | mixmark-io turndown up to 7.2.1 src/commonmark-rules.js redos (Issue 501)

A vulnerability was found in mixmark-io turndown up to 7.2.1. It has been classified as problematic. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity.

This vulnerability is cataloged as CVE-2025-9670. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More