Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/25 6:34 p.m.22 views

CVE-2025-3246

An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allowed cross-site scripting in GitHub Markdown that used $$..$$ math blocks. Exploitation required access to the target GitHub Enterprise Server instance and privileged user interaction with the...

8.6CVSS6.2AI score0.00285EPSS
Exploits0References1
NVD
NVD
added 2025/04/17 11:15 p.m.37 views

CVE-2025-3246

An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allowed cross-site scripting in GitHub Markdown that used $$..$$ math blocks. Exploitation required access to the target GitHub Enterprise Server instance and privileged user interaction with the...

8.6CVSS0.00285EPSS
Exploits0References1
Circl
Circl
added 2025/04/17 10:58 p.m.19 views

CVE-2025-3246

creationtimestamp| type| source ---|---|--- 2025-04-17 22:58:29+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12373 2025-04-18 02:53:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ln2mk6qwik2d 2025-04-18 03:12:05+00:00| seen| https://t.me/cvedetector/23291 2025-04-22...

8.6CVSS7.2AI score0.00285EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/04/17 10:50 p.m.33 views

CVE-2025-3246 Markdown math block sanitization bypass allows privilege escalation and unauthorized workflow triggers

An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allowed cross-site scripting in GitHub Markdown that used $$..$$ math blocks. Exploitation required access to the target GitHub Enterprise Server instance and privileged user interaction with the...

8.6CVSS0.00285EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 10:50 p.m.71 views

CVE-2025-3246

CVE-2025-3246 targets GitHub Enterprise Server, specifically version 3.16.1, via an improper neutralization of input that enables cross-site scripting in GitHub Markdown using $$..$$ math blocks. The issue requires access to the target instance and privileged user interaction with the malicious e...

8.6CVSS5.9AI score0.00285EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/17 10:50 p.m.6 views

CVE-2025-3246 Markdown math block sanitization bypass allows privilege escalation and unauthorized workflow triggers

An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allowed cross-site scripting in GitHub Markdown that used $$..$$ math blocks. Exploitation required access to the target GitHub Enterprise Server instance and privileged user interaction with the...

8.6CVSS6.4AI score0.00285EPSS
Exploits0References1
Rows per page
Query Builder