{"uuid": "20ab7ac5-532e-429e-acb3-8c6ee8606189", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-2237-5R9W-VM8J", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3829", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-2237-5r9w-vm8j\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: ### Impact\n - Information that is restricted from viewing in the search results of site searches (\u203b) can still be viewed via the main text (a feature added in v1.8.0).\n     - Impact by version\n         - v1.8.0 ~ v1.8.3: It will be displayed in the text.\n         - v1.8.0 and earlier: It will not be displayed in the body of the text, but the title (frame name) will be displayed with a link.\n     - Target viewing restriction function\n         - Frame publishing function (private, limited publishing)\n         - IP Restriction Page\n         - Password setting page\n\n### Patches (fixed version)\n - Apply v1.8.4.\n\n### Workarounds\n - Remove the site search (e.g. hide frames).\u3002\n\n### References\nnone\n\ud83d\udccf Published: 2025-02-07T20:50:20Z\n\ud83d\udccf Modified: 2025-02-07T20:50:20Z\n\ud83d\udd17 References:\n1. https://github.com/opensource-workshop/connect-cms/security/advisories/GHSA-2237-5r9w-vm8j\n2. https://github.com/opensource-workshop/connect-cms", "creation_timestamp": "2025-02-07T21:03:02.000000Z"}