Vulnerabilidades em KaTeX
5 resultadosCVE-2024-28244MEDIUMKaTeX's maxExpand bypassed by Unicode sub/superscriptsEPSS 2.2%CVE-2024-28243MEDIUMKaTeX's maxExpand bypassed by \edefEPSS 1.4%CVE-2024-28246MEDIUMKaTeX is missing normalization of the protocol in URLs allows bypassing forbidden protocolsEPSS 0.4%CVE-2024-28245MEDIUMKaTeX's \includegraphics does not escape filenameEPSS 0.4%CVE-2025-23207MEDIUM\htmlData does not validate attribute names in KaTeXEPSS 0.4%