CVE-2024-1899

Showdownjs Denial of Service

An issue in the anchors subparser of Showdownjs versions <= 2.1.0 could allow a remote attacker to cause denial of service conditions.

We have discovered 852 live websites that are affected by CVE-2024-1899.

Affected Software


Product	showdown
Category	JavaScript Libraries
Vulnerable Versions	from 0 through 2.1
Total Vulnerable Versions	32
Vulnerable Domains	852 live websites (100.00% of showdown install base)

Available Reports

Website List

Details

Published - Feb 26, 2024
Updated - Feb 26, 2024

CVE References

CWE References

cwe.mitre.org

Countries

United States	395 websites

Germany	82 websites
France	74 websites
GB	32 websites
Netherlands	31 websites
Canada	23 websites
Italy	20 websites
Switzerland	19 websites
China	16 websites
Czech Republic	11 websites

TLDs

.com	300 websites
.org	64 websites
.io	52 websites
.net	44 websites
.fr	35 websites
.de	34 websites
.nl	27 websites
.it	16 websites
.co.uk	14 websites
.ca	13 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

References

https://www.tenable.com/security/research/tra-2024-05

Websites affected by CVE-2024-1899

Top websites that are affected by CVE-2024-1899. Please click on the "Contact us" link to get more information.

Domain	Country	Rank
*****.blog	Singapore	,**
*.******.com	United States	,*
***..org	United States	*,*
*.*.tv	United States	*,*
**************.com	United States	*,*
*.*****.com	United States	*,*
**********.com	United States	*,*
***************.com	United States	*,*
*******.io	United States	*,*
*****.org	United States	*,*

See full domain list