Lucene search
K

5 matches found

Cvelist
Cvelist
added 2025/01/30 10:41 p.m.17 views

CVE-2025-24885 pwn.college has a XSS on dojo pages

pwn.college is an education platform to learn about, and practice, core cybersecurity concepts in a hands-on fashion. Missing access control on rendering custom unprivileged dojo pages causes ability for users to create stored XSS...

7.6CVSS0.00233EPSS
Exploits0References1
CVE
CVE
added 2025/01/30 10:41 p.m.52 views

CVE-2025-24885

CVE-2025-24885 concerns pwn.college and its Dojo pages. The reported vulnerability is a missing access control on rendering custom (unprivileged) Dojo pages, enabling stored XSS via the dojo content. The CVE entry documents a CVSS v3.1 base score of 7.6 (HIGH) with attack vector NETWORK, attack c...

7.6CVSS7.5AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2025/01/30 10:41 p.m.5 views

CVE-2025-24885 pwn.college has a XSS on dojo pages

pwn.college is an education platform to learn about, and practice, core cybersecurity concepts in a hands-on fashion. Missing access control on rendering custom unprivileged dojo pages causes ability for users to create stored XSS...

7.6CVSS6.8AI score0.00233EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/30 10:41 p.m.9 views

CVE-2025-24885 pwn.college has a XSS on dojo pages

pwn.college is an education platform to learn about, and practice, core cybersecurity concepts in a hands-on fashion. Missing access control on rendering custom unprivileged dojo pages causes ability for users to create stored XSS...

7.6CVSS7.5AI score0.00233EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/30 12:0 a.m.6 views

PT-2025-5592 · Unknown · Pwn.College

Name of the Vulnerable Software and Affected Versions: pwn.college affected versions not specified Description: The issue is related to a lack of access control when generating custom Dojo pages without privileges, allowing users to create stored XSS. This affects the pwn.college platform, which ...

7.6CVSS6.6AI score0.00233EPSS
Exploits0References5
Rows per page
Query Builder