Joohoi

Name of the Vulnerable Software and Affected Versions: HedgeDoc versions prior to 1.5.0 Description: The issue affects HedgeDoc, an open-source collaborative markdown editor, where an attacker can receive arbitrary files from the file system when exporting a note to PDF. This exploit requires the attacker's ability to modify a note and affects all instances with PDF export enabled. The impact is significant, as the attacker can read the HedgeDoc `config.json` file and other files on the filesystem, potentially accessing sensitive information, database credentials, and OAuth secrets. Recommendations: For versions prior to 1.5.0, upgrade to version 1.5.0 to resolve the issue. As a temporary workaround, consider starting the HedgeDoc instance with `CMD ALLOW PDF EXPORT=false` or set `"allowPDFExport": false` in config.json to mitigate this issue.

**Name of the Vulnerable Software and Affected Versions** TileServer GL versions prior to 3.0.0 **Description** An issue was discovered in server.js where the content of the `key` GET parameter is reflected unsanitized in an HTTP response for the application's main page, causing reflected XSS. **Recommendations** For versions prior to 3.0.0, update to version 3.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `server.js` file or sanitizing the `key` GET parameter to minimize the risk of exploitation.