CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Docusaurus Gists Plugin < 4.0.0 - GitHub Personal Access Token Exposure

The Docusaurus gists plugin adds a page to your Docusaurus instance, displaying all public gists of a GitHub user. docusaurus-plugin-content-gists versions prior to 4.0.0 are vulnerable to exposing GitHub Personal Access Tokens in production build artifacts when passed through plugin configuratio...

10CVSS5.8AI score0.14371EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-20874

Malicious code in bioql PyPI...

10CVSS6.3AI score0.14371EPSS

Exploits0References3

RedhatCVE•added 2025/07/11 9:28 p.m.•5 views

CVE-2025-53624

10CVSS6.9AI score0.14371EPSS

Exploits0References1

Cvelist•added 2025/07/09 9:8 p.m.•131 views

CVE-2025-53624 docusaurus-plugin-content-gists Exposes GitHub Personal Access Token

10CVSS0.14371EPSS

Exploits0References2

CVE•added 2025/07/09 9:8 p.m.•58 views

CVE-2025-53624

The CVE-2025-53624 entry concerns the Docusaurus plugin docusaurus-plugin-content-gists. Versions prior to 4.0.0 are vulnerable because a GitHub Personal Access Token passed via plugin configuration could be exposed in production build artifacts, embedding the token in client-side JavaScript bund...

10CVSS6.2AI score0.14371EPSS

Exploits0References2

CNNVD•added 2025/07/09 12:0 a.m.•3 views

Docusaurus gists plugin 信息泄露漏洞

Docusaurus gists plugin is an automation plugin by Webber Takken Personal Developer. An information disclosure vulnerability exists in Docusaurus gists plugin versions prior to 4.0.0, which stems from a GitHub token disclosure that could lead to credential disclosure...

10CVSS5.8AI score0.14371EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by