8 matches found
EUVD-2024-52192
Malicious code in bioql PyPI...
CVE-2024-53930
WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\, which is mishandled by a KaTeX parser...
CVE-2024-53930
WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\, which is mishandled by a KaTeX parser...
CVE-2024-53930
WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\, which is mishandled by a KaTeX parser...
CVE-2024-53930
CVE-2024-53930 affects WikiDocs prior to 1.0.65. A stored XSS vulnerability exists where authenticated users can inject payloads via data after $$, mishandled by the KaTeX parser. The issue, described across multiple sources, is caused by KaTeX parsing behavior and leads to stored XSS, with impac...
CVE-2024-53930
WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\, which is mishandled by a KaTeX parser...
PT-2024-35978 · Katex +1 · Katex +1
Name of the Vulnerable Software and Affected Versions: WikiDocs versions prior to 1.0.65 Description: The issue concerns a stored XSS vulnerability that can be exploited by authenticated users. It occurs due to the mishandling of data by a KaTeX parser, specifically when the data comes after $$...
CVE-2024-53930
WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\, which is mishandled by a KaTeX parser...