Arthur Schreiber

2 exploits Active since Feb 2020

CVE-2020-5238 WRITEUP MEDIUM WRITEUP

Github Flavored Markdown < 0.29.0.gfm.1 - Improper Input Validation

The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.

CVSS 6.5

View Code

CVE-2020-7993 WRITEUP MEDIUM WRITEUP

Prototype 1.6.0.1 - Auth Bypass

Prototype 1.6.0.1 allows remote authenticated users to forge ticket creation (on behalf of other user accounts) via a modified email ID field.

CVSS 4.3

View Code