Khoi-Nguyen Nguyen-Ngoc
3 exploits
Active since Jul 2025
Kotaemon < 0.11.0 - Stored Cross-Site Scripting via PDF Content Rendering
CVSS 6.1
Kotaemon < 0.11.0 - Plaintext Password Storage in LocalStorage
CVSS 7.5
kotaemon <= 0.10.6 - Path Traversal and Arbitrary File Read via Unvalidated File Path
CVSS 6.5