GHSA-2mh3-x6j9-j554

GitHub Security Advisory

⚠ Unreviewed MODERATE Has CVE

The mail template feature lacks an escaping mechanism, causing XSS vectors in multiple extensions.

CVE-2024-27186

GHSA ID

GHSA-2mh3-x6j9-j554

Published

August 20, 2024 6:31 PM

Last Modified

June 4, 2025 9:31 PM

CVSS Score

5.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Last updated: September 11, 2025 6:35 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.