EUVD-2020-23374

Malware in sbrugna...

CVE-2020-35717

zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution because nodeIntegration in webPreferences is true...

Zonetti Zonote Cross-Site Scripting Vulnerability

Zonetti Zonote is Zonetti individual developers of a Javascript-based language development for the provision of Markdown format note-taking capabilities . A cross-site scripting vulnerability exists in zonote version 0.4.0 and prior versions, which allows remote code execution as the node...

CVE-2020-35717

zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution because nodeIntegration in webPreferences is true...

CVE-2020-35717

zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution because nodeIntegration in webPreferences is true...

Design/Logic Flaw

zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution because nodeIntegration in webPreferences is true...

CVE-2020-35717

CVE-2020-35717 affects Zonetti Zonote up to version 0.4.0. The vulnerability is a Cross-Site Scripting (XSS) via a crafted note that, due to nodeIntegration being enabled in webPreferences, can lead to Remote Code Execution. Public exploit details exist in the referenced repository (GitHub: hmart...

CVE-2020-35717

zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution because nodeIntegration in webPreferences is true...

Zonetti Zonote 跨站脚本漏洞

Zonetti Zonote is Zonetti individual developers of a Javascript-based language development for the provision of Markdown format note-taking capabilities . A cross-site scripting vulnerability exists in zonote version 0.4.0 and prior versions, which allows remote code execution as the node...