CVE-2020-35717
Published
CVSS v3
9
CRITICAL
CVSS v2
3.5
LOW
Affected
2
PROJECTS
Description
zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution (because nodeIntegration in webPreferences is true).
Cross-platform desktop note-taking app. Sticky notes with Markdown and Tabs. All in one .txt file.
GitHub