12 matches found
EUVD-2024-0924
Malicious code in bioql PyPI...
cmsplugin-markdownx (=0.1.2), zfl-blogs (>=0.0.1 <=2.2.3) potentially affected by CVE-2024-2319 via django-markdownx (>=1.7.1 <=3.0.1)
django-markdownx PYPI version =1.7.1, =0.0.1, =2.2.3 Source cves: CVE-2024-2319 Source advisory: OSV:GHSA-FVX8-79HX-X82F...
GHSA-FVX8-79HX-X82F Django MarkdownX Cross-Site Scripting (XSS) vulnerability
Cross-Site Scripting XSS vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements...
Django MarkdownX Cross-Site Scripting (XSS) vulnerability
Cross-Site Scripting XSS vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements...
CVE-2024-2319
Cross-Site Scripting XSS vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements...
CVE-2024-2319
Cross-Site Scripting XSS vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements...
Cross site scripting
Cross-Site Scripting XSS vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements...
CVE-2024-2319
The CVE-2024-2319 entry corresponds to a Cross-Site Scripting (XSS) vulnerability in Django MarkdownX, affecting version 4.0.2. The issue arises from insufficient sanitisation of JavaScript elements in the upload functionality, enabling an attacker to store a crafted JavaScript payload. Documente...
CVE-2024-2319 Cross-Site Scripting vulnerability in Django MarkdownX
Cross-Site Scripting XSS vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements...
CVE-2024-2319 Cross-Site Scripting vulnerability in Django MarkdownX
Cross-Site Scripting XSS vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements...
Django MarkdownX Cross-Site Scripting Vulnerability
Django MarkdownX is a comprehensive Markdown plugin built for Django with flexibility, extensibility and ease of use at its core. A cross-site scripting vulnerability exists in Django MarkdownX version 4.0.2 that stems from a lack of proper cleanup of JavaScript elements. An attacker can exploit...
PT-2024-19706 · Unknown · Django Markdownx
Name of the Vulnerable Software and Affected Versions: Django MarkdownX version 4.0.2 Description: A Cross-Site Scripting XSS issue exists in the Django MarkdownX project due to the lack of proper sanitisation of JavaScript elements. This allows an attacker to store a specially crafted JavaScript...