Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package mathjax, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2023-39663 — CVSS 7.5 (high): Mathjax up to v2.7.9 was discovered to contain two Regular expression Denial of Service (ReDoS) vulnerabilities in MathJax.js via the…
CVE-2018-1999024 — CVSS 5.4 (medium): MathJax version prior to version 2.7.4 contains a Cross Site Scripting (XSS) vulnerability in the \unicode{} macro that can result in…