Summary
Gogs: XSS in .ipynb files renderer due to outdated notebookjs
References
Related vulnerabilities
All Supply chain →- HIGHGHSA-5C7P-G73Q-RPG5
StarCitizenWiki Extension Embed Video: Stored XSS via malformed src url with $wgEmbedVideoRequireConsent enabled
- HIGHGHSA-7H5P-637F-JFR7
StarCitizenWiki Extension Embed Video: Stored XSS via unsanitized class passed to template
- HIGHGHSA-C29Q-5XM7-5P62
StarCitizenWiki Extension Embed Video: Stored XSS via unsanitized service name in exception text
- HIGHGHSA-869J-R97X-HX2G
Anki's local HTTP server does not sufficiently validate requests
- MEDIUMGHSA-JV2J-MQMW-XVV5
SurrealDB: Denial of Service via deep operator chains
- MEDIUMGHSA-HV6H-HC26-Q48P
SurrealDB: Field-level SELECT permissions bypassed via graph and reference traversals