Hugo Markdown titles not escaped in internal render hooks. Impacted Hugo users with enabled hooks and untrusted Markdown content
Reporter | Title | Published | Views | Family All 12 |
---|---|---|---|---|
Chainguard | CVE-2024-32875 vulnerabilities | 19 May 202403:07 | – | cgr |
OSV | Hugo Markdown titles are not escaped in internal render hooks in github.com/gohugoio/hugo | 4 Jun 202415:19 | – | osv |
OSV | CGA-fh8j-hg45-wfv8 | 6 Jun 202412:27 | – | osv |
NVD | CVE-2024-32875 | 23 Apr 202421:15 | – | nvd |
Vulnrichment | CVE-2024-32875 Hugo doesn't escape markdown title in internal render hooks | 23 Apr 202420:23 | – | vulnrichment |
Github Security Blog | Hugo Markdown titles do not escaped in internal render hooks | 23 Apr 202421:16 | – | github |
CVE | CVE-2024-32875 | 23 Apr 202421:15 | – | cve |
Cvelist | CVE-2024-32875 Hugo doesn't escape markdown title in internal render hooks | 23 Apr 202420:23 | – | cvelist |
UbuntuCve | CVE-2024-32875 | 23 Apr 202400:00 | – | ubuntucve |
Veracode | Cross Site Scripting | 24 Apr 202404:54 | – | veracode |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo