VYPR
Medium severity5.4OSV Advisory· Published Nov 25, 2024· Updated Jun 17, 2026

CVE-2024-53930

CVE-2024-53930

Description

WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\\, which is mishandled by a KaTeX parser.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zavy86/WikidocsOSV2 versions
    1.0.0, 1.0.1, 1.0.10, …+ 1 more
    • (no CPE)range: 1.0.0, 1.0.1, 1.0.10, …
    • (no CPE)range: <1.0.65

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.