CVE-2024-52583
CVSS V2 None
CVSS V3 None
Description
The WesHacks GitHub repository provides the official Hackathon competition website source code for the Muweilah Wesgreen Hackathon. The page `schedule.html` before 17 November 2024 or commit 93dfb83 contains links to `Leostop`, a site that hosts a malicious injected JavaScript file that occurs when bootstrap is run as well as jquery. `Leostop` may be a tracking malware and creates 2 JavaScript files, but little else is known about it. The WesHacks website remove all references to `Leostop` as of 17 November 2024.
Overview
- CVE ID
- CVE-2024-52583
- Assigner
- GitHub_M
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-11-18T20:35:16.220Z
- Last Modified Date
- 2024-11-18T20:35:16.220Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://github.com/DefinetlyNotAI/WesHacks/security/advisories/GHSA-462m-5c66-4pmh | x_refsource_CONFIRM |
https://github.com/DefinetlyNotAI/WesHacks/commit/93dfb83cb23a8d44e81dc12424ad8a5ea05e8f96 | x_refsource_MISC |
https://github.com/DefinetlyNotAI/WesHacks/commit/ea5a4112d94bfe47beb74b8a1ba9b631d10f64f0 | x_refsource_MISC |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-52583 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52583 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-11-19 13:39:36 | Added to TrackCVE |