Lucene search
K

41 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:33 a.m.7 views

CVE-2024-39904

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS7.5AI score0.00657EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-17809

Malware in sbrugna...

6.1CVSS6.3AI score0.00788EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-39118

Malicious code in bioql PyPI...

9.6CVSS6.6AI score0.01577EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-38293

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00657EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 7:51 a.m.13 views

CVE-2024-41662

VNote is a note-taking platform. A Cross-Site Scripting XSS vulnerability has been identified in the Markdown rendering functionality of versions 3.18.1 and prior of the VNote note-taking application. This vulnerability allows the injection and execution of arbitrary JavaScript code through which...

9.6CVSS6.9AI score0.01577EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2024/07/26 3:11 a.m.3 views

SUSE CVE-2024-41662

VNote is a note-taking platform. A Cross-Site Scripting XSS vulnerability has been identified in the Markdown rendering functionality of versions 3.18.1 and prior of the VNote note-taking application. This vulnerability allows the injection and execution of arbitrary JavaScript code through which...

9.6CVSS7.3AI score0.01577EPSS
Exploits1References3
NVD
NVD
added 2024/07/24 5:15 p.m.22 views

CVE-2024-41662

VNote is a note-taking platform. A Cross-Site Scripting XSS vulnerability has been identified in the Markdown rendering functionality of versions 3.18.1 and prior of the VNote note-taking application. This vulnerability allows the injection and execution of arbitrary JavaScript code through which...

9.6CVSS0.01577EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/07/24 4:55 p.m.23 views

CVE-2024-41662 VNote vulnerable to Markdown XSS, which leads to RCE

VNote is a note-taking platform. A Cross-Site Scripting XSS vulnerability has been identified in the Markdown rendering functionality of versions 3.18.1 and prior of the VNote note-taking application. This vulnerability allows the injection and execution of arbitrary JavaScript code through which...

8.6CVSS8AI score0.01577EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/07/24 4:55 p.m.25 views

CVE-2024-41662 VNote vulnerable to Markdown XSS, which leads to RCE

VNote is a note-taking platform. A Cross-Site Scripting XSS vulnerability has been identified in the Markdown rendering functionality of versions 3.18.1 and prior of the VNote note-taking application. This vulnerability allows the injection and execution of arbitrary JavaScript code through which...

8.6CVSS0.01577EPSS
Exploits1References2
OSV
OSV
added 2024/07/24 4:55 p.m.20 views

CVE-2024-41662 VNote vulnerable to Markdown XSS, which leads to RCE

VNote is a note-taking platform. A Cross-Site Scripting XSS vulnerability has been identified in the Markdown rendering functionality of versions 3.18.1 and prior of the VNote note-taking application. This vulnerability allows the injection and execution of arbitrary JavaScript code through which...

8.6CVSS7.3AI score0.01577EPSS
Exploits1References4
CVE
CVE
added 2024/07/24 4:55 p.m.62 views

CVE-2024-41662

CVE-2024-41662 affects the VNote note-taking platform, specifically versions 3.18.1 and prior, where the Markdown rendering component is vulnerable to Cross-Site Scripting (XSS) that can lead to arbitrary JavaScript execution and potential remote code execution. The issue is triggered via Markdow...

9.6CVSS8AI score0.01577EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/24 12:0 a.m.5 views

PT-2024-29491 · Vnote · Vnote

Name of the Vulnerable Software and Affected Versions: VNote versions 3.18.1 and prior Description: A Cross-Site Scripting XSS vulnerability has been identified in the Markdown rendering functionality of the VNote note-taking application. This issue allows the injection and execution of arbitrary...

9.6CVSS7.2AI score0.01577EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/07/24 12:0 a.m.2 views

VNote 安全漏洞

VNote is an open source cross-platform Markdown note-taking tool from VNote Open Source. A security vulnerability exists in VNote 3.18.1 and earlier versions. An attacker can remotely execute code by exploiting the vulnerability...

9.6CVSS7AI score0.01577EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2024/07/13 2:36 a.m.3 views

SUSE CVE-2024-39904

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS7.6AI score0.00657EPSS
Exploits0References3
NVD
NVD
added 2024/07/11 4:15 p.m.10 views

CVE-2024-39904

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS0.00657EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/11 3:37 p.m.17 views

CVE-2024-39904 Code Execution Vulnerability via Local File Path Traversal in Vnote

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS0.00657EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/11 3:37 p.m.10 views

CVE-2024-39904 Code Execution Vulnerability via Local File Path Traversal in Vnote

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS7.5AI score0.00657EPSS
Exploits0References2
OSV
OSV
added 2024/07/11 3:37 p.m.17 views

CVE-2024-39904 Code Execution Vulnerability via Local File Path Traversal in Vnote

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS7.6AI score0.00657EPSS
Exploits0References4
CVE
CVE
added 2024/07/11 3:37 p.m.48 views

CVE-2024-39904

VNote (note‑taking platform) before version 3.18.1 is affected by a code execution vulnerability that can be triggered via crafted notes containing local file references (for example, file:///C:/WINDOWS/system32/cmd.exe or calc.exe). The underlying issue is a local file path handling/URI embeddin...

8.8CVSS8.7AI score0.00657EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/11 12:0 a.m.6 views

PT-2024-28722 · Vnote · Vnote

Name of the Vulnerable Software and Affected Versions: VNote versions prior to 3.18.1 Description: A code execution issue existed in VNote, allowing an attacker to execute arbitrary programs on the victim's system. This could be achieved by using a crafted URI in a note, such as...

8.8CVSS8AI score0.00657EPSS
Exploits0References7
Rows per page
Query Builder