diff --git a/package.json b/package.json
index 830bb8f..8f3d37a 100644
--- a/package.json
+++ b/package.json
@@ -15,7 +15,7 @@
   "dependencies": {
     "@types/marked": "^5.0.1",
     "@vueuse/head": "^1.1.26",
-    "@xmldom/xmldom": "^0.9.6",
+    "@xmldom/xmldom": "^0.9.9",
     "compression": "^1.7.4",
     "express": "^4.20.0",
     "express-rate-limit": "^7.4.0",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index fd12ef6..258cbc2 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -15,8 +15,8 @@ importers:
         specifier: ^1.1.26
         version: 1.3.1(vue@3.4.34(typescript@4.8.4))
       '@xmldom/xmldom':
-        specifier: ^0.9.6
-        version: 0.9.6
+        specifier: ^0.9.9
+        version: 0.9.9
       compression:
         specifier: ^1.7.4
         version: 1.7.4
@@ -474,8 +474,8 @@ packages:
     peerDependencies:
       vue: '>=2.7 || >=3'
 
-  '@xmldom/xmldom@0.9.6':
-    resolution: {integrity: sha512-Su4xcxR0CPGwlDHNmVP09fqET9YxbyDXHaSob6JlBH7L6reTYaeim6zbk9o08UarO0L5GTRo3uzl0D+9lSxmvw==}
+  '@xmldom/xmldom@0.9.9':
+    resolution: {integrity: sha512-qycIHAucxy/LXAYIjmLmtQ8q9GPnMbnjG1KXhWm9o5sCr6pOYDATkMPiTNa6/v8eELyqOQ2FsEqeoFYmgv/gJg==}
     engines: {node: '>=14.6'}
 
   accepts@1.3.8:
@@ -813,6 +813,7 @@ packages:
   glob@11.0.2:
     resolution: {integrity: sha512-YT7U7Vye+t5fZ/QMkBFrTJ7ZQxInIUjwyAjVj84CYXqgBdv30MFUPGnBR6sQaVq6Is15wYJUsnzTuWaGRBhBAQ==}
     engines: {node: 20 || >=22}
+    deprecated: Old versions of glob are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me
     hasBin: true
 
   globalthis@1.0.4:
@@ -1826,7 +1827,7 @@ snapshots:
       '@unhead/vue': 1.9.16(vue@3.4.34(typescript@4.8.4))
       vue: 3.4.34(typescript@4.8.4)
 
-  '@xmldom/xmldom@0.9.6': {}
+  '@xmldom/xmldom@0.9.9': {}
 
   accepts@1.3.8:
     dependencies: