8 matches found
EUVD-2022-32586
Malicious code in bioql PyPI...
CVE-2022-28101
Turtlapp Turtle Note v0.7.2.6 does not filter the tag during markdown parsing, allowing attackers to execute HTML injection...
CVE-2022-28101
Turtlapp Turtle Note v0.7.2.6 does not filter the tag during markdown parsing, allowing attackers to execute HTML injection...
CVE-2022-28101
Turtlapp Turtle Note v0.7.2.6 does not filter the tag during markdown parsing, allowing attackers to execute HTML injection...
CVE-2022-28101
Turtlapp Turtle Note v0.7.2.6 does not filter the tag during markdown parsing, allowing attackers to execute HTML injection...
Design/Logic Flaw
Turtlapp Turtle Note v0.7.2.6 does not filter the tag during markdown parsing, allowing attackers to execute HTML injection...
CVE-2022-28101
CVE-2022-28101 affects Turtlapp Turtle Note v0.7.2.6. The issue arises in markdown parsing where the application does not filter the tag, enabling HTML injection. The NVD entry lists a base score of 6.0 (MEDIUM) in CVSS2 and 9.0 (CRITICAL) in CVSS3.1, with network attack vector, low complexity, ...
Lyon Bros Turtlapp Turtle Note 跨站脚本漏洞
Lyon Bros Turtlapp Turtle Note is a secure, collaborative notebook from Lyon Bros. Use it to save notes, bookmarks, passwords, ideas, dream journals, photos, documents and anything else you want to keep safe. A security vulnerability exists in Turtlapp Turtle Note version v0.7.2.6, which stems fr...