A vulnerability labeled as problematic has been found in Rapid7 InsightConnect Markdown Plugin up to 3.x on Linux. Impacted is the function markdown_to_pdf . Executing a manipulation can lead to cross site scripting. The identification of this vulnerability is CVE-2026-8661 . The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.