CVE-2018-25378 Notebook Pro 2.0 Denial of Service via Notebook Name Field

Notebook Pro 2.0 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the notebook name field. Attackers can create a malicious text file containing 500 or more characters, paste the content into the New Noteboo...

Codex 跨站脚本漏洞

Codex is a free notebook software for programmers and computer science majors from the US-based individual developer Josh Vickery. A cross-site scripting vulnerability exists in Codex versions prior to 1.4.0, which stems from a lack of effective filtering and escaping of the Name field of...