cve/CVE-2024-36109.md at a8969e132322a214e7b78da5711159d6f891f0ab

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-19 17:30:12 +00:00

0xMarcio bc4580b779 Update CVE sources 2024-06-07 04:52

2024-06-07 04:52:01 +00:00

Description

CoCalc is web-based software that enables collaboration in research, teaching, and scientific publishing. In affected versions the markdown parser allows <script> tags to be included which execute when published. This issue has been addressed in commit 419862a9c9879c. Users are advised to upgrade. There are no known workarounds for this vulnerability.

POC

Reference

https://github.com/sagemathinc/cocalc/security/advisories/GHSA-8w44-hggw-p5rf

Github

No PoCs found on GitHub currently.

997 B Raw Blame History

CVE-2024-36109

Description

POC

Reference

Github

997 B

Raw Blame History