libanjuta.so is vulnerable to information disclosure.The vulnerability exits in read_bookmarks
function in anjuta-bookmarks.c
because the incorrect use of libxml2 API which allows an attacker to gain access to information in the file system.
github.com/advisories/GHSA-mxvm-wqqj-9w63
github.com/kyoushuu/anjuta/blob/ef85afaa05bd802bed485ff83c14eaed6632844c/plugins/document-manager/anjuta-bookmarks.c#L858
gitlab.gnome.org/Archive/anjuta/-/blob/master/plugins/document-manager/anjuta-bookmarks.c#L858
gitlab.gnome.org/Archive/anjuta/-/issues/12
gitlab.gnome.org/GNOME/anjuta/-/issues/12