CYBERHAWK / CVE / CVE-2026-49493

CVE-2026-49493

HIGH CVSS 8.8 other

The flaw

Markdown Preview Enhanced before 0.8.28 parses Bitfield fenced code blocks with interpretJS(), which evaluates the block content as code via vm.runInNewContext(), allowing arbitrary code execution. A crafted markdown document containing a m

What to do

Review advisory and patch per vendor guidance.

▸ Scan my repo for CVE-2026-49493

References

NVD CISA KEV OSV GitHub Advisory MITRE News search

First seen 2026-06-12 · Tracked by PickBits CyberHawk · Weekly CVE digest

← All CVEs RSS Scheduled audits