3 matches found
EUVD-2025-0112
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-28245
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KaTeX is a JavaScript library for TeX math rendering on the web. KaTeX users who render untrusted mathematical expressions could encounter malicious input using...
URL Protocol Bypass
katex is vulnerable to URL Protocol Bypass. The vulnerability is due to insufficient validation of URL protocols by the KaTeX library's trust option. It allows malicious inputs containing URLs with uppercase characters in the protocol to bypass the blacklist mechanism...