CVE-2020-35717
CVE-2020-35717 affects Zonetti Zonote up to version 0.4.0. The vulnerability is a Cross-Site Scripting (XSS) via a crafted note that, due to nodeIntegration being enabled in webPreferences, can lead to Remote Code Execution. Public exploit details exist in the referenced repository (GitHub: hmart...