exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2024-32875

почти 2 года назад

Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.125.3, title arguments in Markdown for links and images not escaped in internal render hooks. Hugo users who are impacted are those who have these hooks enabled and do not trust their Markdown content files. The issue is patched in v0.125.3. As a workaround, replace the templates with user defined templates or disable the internal templates.

CVSS3: 6.1

EPSS: Низкий

CVE-2024-32875

почти 2 года назад

Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.125.3, title arguments in Markdown for links and images not escaped in internal render hooks. Hugo users who are impacted are those who have these hooks enabled and do not trust their Markdown content files. The issue is patched in v0.125.3. As a workaround, replace the templates with user defined templates or disable the internal templates.

CVSS3: 6.1

EPSS: Низкий

CVE-2024-32875

почти 2 года назад

Hugo is a static site generator. Starting in version 0.123.0 and prior ...

CVSS3: 6.1

EPSS: Низкий

GHSA-ppf8-hhpp-f5hj

почти 2 года назад

Hugo Markdown titles do not escaped in internal render hooks

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-32875 Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.125.3, title arguments in Markdown for links and images not escaped in internal render hooks. Hugo users who are impacted are those who have these hooks enabled and do not trust their Markdown content files. The issue is patched in v0.125.3. As a workaround, replace the templates with user defined templates or disable the internal templates.	CVSS3: 6.1	0% Низкий	почти 2 года назад
CVE-2024-32875 Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.125.3, title arguments in Markdown for links and images not escaped in internal render hooks. Hugo users who are impacted are those who have these hooks enabled and do not trust their Markdown content files. The issue is patched in v0.125.3. As a workaround, replace the templates with user defined templates or disable the internal templates.	CVSS3: 6.1	0% Низкий	почти 2 года назад
CVE-2024-32875 Hugo is a static site generator. Starting in version 0.123.0 and prior ...	CVSS3: 6.1	0% Низкий	почти 2 года назад
GHSA-ppf8-hhpp-f5hj Hugo Markdown titles do not escaped in internal render hooks	CVSS3: 6.1	0% Низкий	почти 2 года назад

Уязвимостей на страницу