hedgedoc — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting hedgedoc. AI-powered Chinese analysis, POCs, and references for each vulnerability.

HedgeDoc serves as a collaborative markdown editor for real-time document creation and sharing. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting attacks, and privilege escalation flaws, with 13 CVEs documented. Common security issues often stem from improper input validation and insufficient access controls. Notable incidents include a critical RCE vulnerability (CVE-2022-24433) allowing arbitrary command execution, and persistent XSS flaws enabling malicious script injection. The platform's open-source nature has facilitated rapid vulnerability remediation, though its widespread deployment in academic and enterprise environments necessitates ongoing security vigilance.

Goal Reached Thanks to every supporter — we hit 100%!

hedgedoc — Vulnerabilities & Security Advisories 13