CVE-2024-52583

Name of the Vulnerable Software and Affected Versions WesHacks GitHub repository versions prior to 17 November 2024 or commit 93dfb83

Description The issue concerns the presence of links to Leostop, a site potentially hosting malicious injected JavaScript files, in the schedule.html page of the WesHacks GitHub repository. This malware may be used for tracking and creates 2 JavaScript files. The affected page is part of the official Hackathon competition website source code for the Muweilah Wesgreen Hackathon.

Recommendations For versions prior to 17 November 2024 or commit 93dfb83, remove all references to Leostop from the schedule.html page to mitigate the risk. As a temporary workaround, consider restricting access to the schedule.html page until the issue is fully resolved.