6 matches found
GO-2025-4045 Mattermost Server vulnerable to Cross-site Scripting through file preview feature in github.com/mattermost/mattermost-server
Mattermost Server vulnerable to Cross-site Scripting through file preview feature in github.com/mattermost/mattermost-server...
CVE-2025-50183
OpenList Frontend is a UI component for OpenList. Prior to version 4.0.0-rc.4, a vulnerability exists in the file preview/browsing feature of the application, where files with a .py extension that contain JavaScript code wrapped in tags may be interpreted and executed as HTML in certain modes. Th...
CVE-2025-50183 OpenList (frontend) allows XSS Attacks in the built-in Markdown Viewer
OpenList Frontend is a UI component for OpenList. Prior to version 4.0.0-rc.4, a vulnerability exists in the file preview/browsing feature of the application, where files with a .py extension that contain JavaScript code wrapped in tags may be interpreted and executed as HTML in certain modes. Th...
OpenList Frontend 跨站脚本漏洞
OpenList Frontend is an OpenList Team open source application that protects open source projects from trust-based attacks. A cross-site scripting vulnerability exists in OpenList Frontend versions prior to 4.0.0-rc.4, which stems from a .py file in the file preview feature that may be interpreted...
OpenList (frontend) allows XSS Attacks in the built-in Markdown Viewer
XSS via .py file containing script tag interpreted as HTML Summary A vulnerability exists in the file preview/browsing feature of the application, where files with a .py extension that contain JavaScript code wrapped in tags may be interpreted and executed as HTML in certain modes. This leads to ...
PT-2024-26565 · Unknown · Raingad Im
Name of the Vulnerable Software and Affected Versions: Raingad IM version 4.1.4 Description: The issue is related to an arbitrary file upload vulnerability in the File preview function, allowing attackers to execute arbitrary code by uploading a crafted PDF file. Recommendations: For Raingad IM...