Security News

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

TheHackerNews

Daniel Bender

27 Jan 2026

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide sandboxing is enabled.