Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

124 matches found

CVE
CVEadded 2019/09/09 7:21 p.m.120 views

CVE-2019-6784

GitLab CVE-2019-6784 affects GitLab Community and Enterprise Edition: versions before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1 are vulnerable. A persistent XSS flaw arises in Markdown processing due to lack of input validation and output encoding when KaTeX is processed. Impact is l...

6.1CVSS5.9AI score0.00147EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVEadded 2019/09/09 7:21 p.m.17 views

CVE-2019-6784

Removed by vendor...

6.1CVSS6.9AI score0.00147EPSS
Exploits1
Hacker One
Hacker Oneadded 2019/04/26 3:41 p.m.15 views

GitLab: Clientside resource Exhausting by exploiting gitlab math rendering

Summary based on the documentation gitlab markdown is supporting math expresion rendering using KaTex and able to run subset syntax from LaTex this could be achieved by using 2 ways in the markdown for inline and for multiline. F476662 Steps to reproduce Step-by-step guide to reproduce the issue,...

6.8AI score
Exploits0
Veracode
Veracodeadded 2016/12/14 5:5 a.m.12 views

Denial Of Service (DoS)

KaTeX is vulnerable to denial of service DoS attacks. These attacks are possible by chaining multiple /sqrt statements to take up 100% CPU power...

6.5AI score
Exploits0
Rows per page
Query Builder