24Nis
CVE-2024-32875 | gohugoio hugo up to 0.125.2 Markdown title cross site scripting (GHSA-ppf8-hhpp-f5hj)
A vulnerability was found in gohugoio hugo up to 0.125.2. It has been declared as problematic. This vulnerability affects unknown code of the component Markdown Handler. The manipulation of the argument title leads to basic cross site scripting. This vulnerability was named CVE-2024-32875. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.