CVE-2019-8255

Brackets versions 1.14 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.

CVE-2016-4165

The extension manager in Adobe Brackets before 1.7 allows attackers to have an unspecified impact via invalid input.

CVE-2016-4164

Cross-site scripting (XSS) vulnerability in Adobe Brackets before 1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.