23 matches found
EUVD-2021-1733
Malware in sbrugna...
GHSA-MM7X-QFJJ-5G2C vulnerabilities
Vulnerabilities for packages: oranda, zola, mdbook...
GHSA-MM7X-QFJJ-5G2C vulnerabilities
Vulnerabilities for packages: zola, oranda, mdbook...
fluminurs (>=0.1.1 <=0.1.6), html2pango (>=0.2.0 <=0.3.2) +3 more potentially affected by unknown CVE via ammonia (>=2.1.4 <=3.1.4)
ammonia CARGO version =2.1.4, =0.1.1, =0.2.0, =0.3.0, =0.3.1 - telereads =0.1.3 Source cves: unknown CVE Source advisory: OSV:GHSA-MM7X-QFJJ-5G2C...
CVE-2025-55159 vulnerabilities
Vulnerabilities for packages: efs-utils, linkerd2, uv, zola, linkerd2-proxy, buck2, shadowsocks-rust, linkerd-extension-init, pixi, mdbook...
GHSA-QX2V-8332-M4FV vulnerabilities
Vulnerabilities for packages: efs-utils, linkerd2, uv, zola, linkerd2-proxy, buck2, shadowsocks-rust, linkerd-extension-init, pixi, mdbook...
CVE-2025-55159 vulnerabilities
Vulnerabilities for packages: efs-utils, zola, uv, jujutsu, linkerd2-proxy, linkerd-extension-init, linkerd2, pixi, buck2, shadowsocks-rust, mdbook...
GHSA-QX2V-8332-M4FV vulnerabilities
Vulnerabilities for packages: efs-utils, zola, uv, jujutsu, linkerd2-proxy, linkerd-extension-init, linkerd2, pixi, buck2, shadowsocks-rust, mdbook...
CVE-2020-26297
mdBook is a utility to create modern online books from Markdown files and is written in Rust. In mdBook before version 0.4.5, there is a vulnerability affecting the search feature of mdBook, which could allow an attacker to execute arbitrary JavaScript code on the page. The search feature of mdBo...
GHSA-GX5W-RRHP-F436 XSS in mdBook
This is a cross-post of the official security advisoryml. The official post contains a signed version with our PGP key, as well. ml: https://groups.google.com/g/rustlang-security-announcements/c/3-sO6of29O0 The Rust Security Response Working Group was recently notified of a security issue affecti...
XSS in mdBook
This is a cross-post of the official security advisoryml. The official post contains a signed version with our PGP key, as well. ml: https://groups.google.com/g/rustlang-security-announcements/c/3-sO6of29O0 The Rust Security Response Working Group was recently notified of a security issue affecti...
FreeBSD : mdbook -- XSS in mdBook's search page (40b481a9-9df7-11eb-9bc3-8c164582fbac)
Rust Security Response Working Group reports : The search feature of mdBook introduced in version 0.1.4 was affected by a cross site scripting vulnerability that allowed an attacker to execute arbitrary JavaScript code on an user's browser by tricking the user into typing a malicious search query...
mdbook -- XSS in mdBook's search page
Rust Security Response Working Group reports: The search feature of mdBook introduced in version 0.1.4 was affected by a cross site scripting vulnerability that allowed an attacker to execute arbitrary JavaScript code on an user's browser by tricking the user into typing a malicious search query,...
[ASA-202101-8] mdbook: cross-site scripting
Arch Linux Security Advisory ASA-202101-8 ========================================= Severity: Medium Date : 2021-01-12 CVE-ID : CVE-2020-26297 Package : mdbook Type : cross-site scripting Remote : Yes Link : https://security.archlinux.org/AVG-1399 Summary ======= The package mdbook before version...
Kubernetes: XSS on kubernetes-csi.github.io (mdBook)
Report Submission Form Summary: Hi, I have recently found XSS vulnerability in mdBook CVE-2020-26297, fixed and disclosed on 4th January 2020. The details were published in a security advisory here: https://blog.rust-lang.org/2021/01/04/mdbook-security-advisory.html I did a quick recon and found ...
CVE-2020-26297
mdBook is a utility to create modern online books from Markdown files and is written in Rust. In mdBook before version 0.4.5, there is a vulnerability affecting the search feature of mdBook, which could allow an attacker to execute arbitrary JavaScript code on the page. The search feature of mdBo...
CVE-2020-26297
mdBook is a utility to create modern online books from Markdown files and is written in Rust. In mdBook before version 0.4.5, there is a vulnerability affecting the search feature of mdBook, which could allow an attacker to execute arbitrary JavaScript code on the page. The search feature of mdBo...
Cross site scripting
mdBook is a utility to create modern online books from Markdown files and is written in Rust. In mdBook before version 0.4.5, there is a vulnerability affecting the search feature of mdBook, which could allow an attacker to execute arbitrary JavaScript code on the page. The search feature of mdBo...
CVE-2020-26297 XSS in mdBook's search page
mdBook is a utility to create modern online books from Markdown files and is written in Rust. In mdBook before version 0.4.5, there is a vulnerability affecting the search feature of mdBook, which could allow an attacker to execute arbitrary JavaScript code on the page. The search feature of mdBo...
CVE-2020-26297
CVE-2020-26297 affects mdBook, a Rust-based tool for building online books. The vulnerability is a cross-site scripting flaw in the search feature (introduced in 0.1.4) that could allow an attacker to execute arbitrary JavaScript in a user’s browser via a malicious search query or a crafted link....