CVE-2025-29036

Published
View on NVD ↗
CVSS v3
5.9
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component.

HypeDuke/vulnerable-research
HypeDuke/vulnerable-research
GitHubGitHub
sahat/hackathon-starter
sahat/hackathon-starter
A boilerplate for Node.js web applications
GitHubGitHub
35.2K