HedgeDoc CVE-2026-25642: Missing Security Headers on Uploaded Files Leading to XSS

github.com 2026-02-07翻訳準備中…中国語で表示中中国語 →English →

Security AdvisoryCVE-2026-25642MediumHedgeDoc

Affected:

HedgeDoc <= 1.10.5

Fixed in:

1.10.6

参照 CVE: CVE-2026-25642 · 4.3

本文由本平台从 github.com 自动抓取，经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。

このソースからの他の記事

Arbitrary File Write Vulnerability in cramfs-tools cramfsck -x with PoC 2026-05-11 cramfs-tools cramfsck Arbitrary File Write via crafted cramfs image extraction 2026-05-11 cramfsck Directory Traversal Fix via Invalid Filename Check 2026-05-11 cramfs-2.2 Security Update: Fixes DoS, Buffer Overflow, and Path Traversal 2026-05-11 Open5GS SMF HR Mode DNN Validation Flaw Causes Service Interruption 2026-05-11