Vviers

**Name of the Vulnerable Software and Affected Versions** grist-core versions prior to 1.3.1 **Description** A user visiting a malicious document or submitting a malicious form could have their account compromised due to the ability to use the `javascript:` scheme with custom widget URLs and form redirect URLs. **Recommendations** For versions prior to 1.3.1, upgrade to version 1.3.1 to resolve the issue. As a temporary workaround for users unable to upgrade, avoid visiting documents or forms prepared by people they do not trust.

**Name of the Vulnerable Software and Affected Versions** grist-core versions prior to 1.3.2 **Description** The issue concerns a spreadsheet hosting server where a user's account could be compromised by visiting a malicious document and previewing an attachment. This happens because JavaScript in an SVG file is evaluated in the context of the user's current page, allowing for potential account takeover. **Recommendations** For versions prior to 1.3.2, upgrade to version 1.3.2 or later to resolve the issue. As a temporary workaround for users unable to upgrade, avoid previewing attachments in documents prepared by untrusted individuals.

**Name of the Vulnerable Software and Affected Versions** grist-core versions prior to 1.3.2 **Description** The issue arises when a user visits a malicious document and clicks on a link in a HyperLink cell using a control modifier, such as Ctrl+click. This could lead to account compromise, as the link could use the javascript: scheme and be evaluated in the context of their current page. **Recommendations** For versions prior to 1.3.2, upgrade to version 1.3.2 or later to resolve the issue. As a temporary workaround for users unable to upgrade, avoid clicking on HyperLink cell links using a control modifier in documents prepared by people they do not trust.