41 matches found
PT-2024-28722 · Vnote · Vnote
Name of the Vulnerable Software and Affected Versions: VNote versions prior to 3.18.1 Description: A code execution issue existed in VNote, allowing an attacker to execute arbitrary programs on the victim's system. This could be achieved by using a crafted URI in a note, such as...
Malicious Ads Targeting Chinese Users with Fake Notepad++ and VNote Installers
Chinese users looking for legitimate software such as Notepad++ and VNote on search engines like Baidu are being targeted with malicious ads and bogus links to distribute trojanized versions of the software and ultimately deploy Geacon, a Golang-based implementation of Cobalt Strike. "The malicio...
What’s in your notepad? Infected text editors target Chinese users
"Malvertising" is a popular way of attracting victims to malicious sites: an advertisement block is placed at the top of the search results, increasing the likelihood of users clicking the link. Sites at the top of search results also tend to be more trusted by users. A year ago, our experts...
SUSE CVE-2023-5701
A vulnerability has been found in vnotex vnote up to 3.17.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Markdown File Handler. The manipulation with the input Click here leads to cross site scripting. The attack can be launched...
CVE-2023-5701
A vulnerability has been found in vnotex vnote up to 3.17.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Markdown File Handler. The manipulation with the input Click here leads to cross site scripting. The attack can be launched...
CVE-2023-5701
A vulnerability has been found in vnotex vnote up to 3.17.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Markdown File Handler. The manipulation with the input Click here leads to cross site scripting. The attack can be launched...
Cross site scripting
A vulnerability has been found in vnotex vnote up to 3.17.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Markdown File Handler. The manipulation with the input Click here leads to cross site scripting. The attack can be launched...
CVE-2023-5701 vnotex vnote Markdown File cross site scripting
A vulnerability has been found in vnotex vnote up to 3.17.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Markdown File Handler. The manipulation with the input Click here leads to cross site scripting. The attack can be launched...
CVE-2023-5701
CVE-2023-5701 affects vnotex vnote up to version 3.17.0, involving the Markdown File Handler component. A crafted input like Click here can cause cross-site scripting and the vulnerability can be exploited remotely. Multiple connected sources confirm a public exploit/disclosure. There is no expli...
CVE-2023-5701 vnotex vnote Markdown File cross site scripting
A vulnerability has been found in vnotex vnote up to 3.17.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Markdown File Handler. The manipulation with the input Click here leads to cross site scripting. The attack can be launched...
VNote Cross-Site Scripting Vulnerability
VNote is an open source cross-platform Markdown note-taking tool. A security vulnerability exists in VNote 3.17.0 and earlier versions, which stems from a cross-site scripting XSS vulnerability in the component Markdown File Handler...
PT-2023-32274 · Vnotex · Vnotex
Name of the Vulnerable Software and Affected Versions: vnotex vnote versions up to 3.17.0 Description: A vulnerability has been found in the Markdown File Handler component, which can be exploited to lead to cross-site scripting. The manipulation with the input Click here can be used to launch a...
[SECURITY] Fedora 31 Update: php-horde-Horde-Data-2.1.5-1.fc31
A data import and export API, with backends for: CSV TSV iCalendar vCard vNote vTodo...
[SECURITY] Fedora 30 Update: php-horde-Horde-Data-2.1.5-1.fc30
A data import and export API, with backends for: CSV TSV iCalendar vCard vNote vTodo...
Fedora: Security Advisory for php-horde-Horde-Data (FEDORA-2020-0248ad925e)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for php-horde-Horde-Data (FEDORA-2020-1e7cc91d55)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2019-8419
VNote 2.2 has XSS via a new text note...
Default credentials
VNote 2.2 has XSS via a new text note...
CVE-2019-8419
VNote 2.2 has XSS via a new text note...
CVE-2019-8419
CVE-2019-8419 affects VNote 2.2 and describes an XSS vulnerability that can be triggered via a new text note. The primary source (NVD) confirms XSS as the issue; no exploitation vectors, impacted versions beyond 2.2, or remediation steps are provided in the connected documents. The CVE entry list...