2 matches found
CVE-2024-45312
creationtimestamp| type| source ---|---|--- 2024-09-02 21:24:19+00:00| seen| https://t.me/cvedetector/4647...
CVE-2024-45312 Arbitrary language parameter can passed to `aspell` executable via spelling requests in overleaf
Overleaf is a web-based collaborative LaTeX editor. Overleaf Community Edition and Server Pro prior to version 5.0.7 or 4.2.7 for the 4.x series contain a vulnerability that allows an arbitrary language parameter in client spelling requests to be passed to the aspell executable running on the...