← Back

Zonote

zonote

Vendor: Electronjs • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-35717
1Electronjs
1Zonote
Nov 21, 2024
Jan 1, 2021
N/A· v4
9.0 CRITICAL· v3
3.5 LOW· v2
zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution (because nodeIntegration in webPreferences is true).