cve/CVE-2024-36109.md at d9f6f5801b0d53c0ab1f613e250dc5a8a9a8f46f

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio bc4580b779 Update CVE sources 2024-06-07 04:52

2024-06-07 04:52:01 +00:00

Description

CoCalc is web-based software that enables collaboration in research, teaching, and scientific publishing. In affected versions the markdown parser allows <script> tags to be included which execute when published. This issue has been addressed in commit 419862a9c9879c. Users are advised to upgrade. There are no known workarounds for this vulnerability.

POC

Reference

https://github.com/sagemathinc/cocalc/security/advisories/GHSA-8w44-hggw-p5rf

Github

No PoCs found on GitHub currently.

997 B Raw Blame History

CVE-2024-36109

Description

POC

Reference

Github

997 B

Raw Blame History