Vulnerabilities (CVE)

Filtered by vendor Gitnoteapp Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-9785 1 Gitnoteapp 1 Gitnote 2024-11-21 6.8 MEDIUM 7.8 HIGH
gitnote 3.1.0 allows remote attackers to execute arbitrary code via a crafted Markdown file, as demonstrated by a javascript:window.parent.top.require('child_process').execFile substring in the onerror attribute of an IMG element.