Cross-site Scripting (XSS) - Stored in GitHub repository alagrede/znote-app prior to 1.7.11.
CVSS Score
2.3
EPSS Score
0.001
Published
2022-12-19
A cross-site scripting (XSS) vulnerability exists in Znote 0.5.2. An attacker can insert payloads, and the code execution will happen immediately on markdown view mode.
CVSS Score
5.4
EPSS Score
0.003
Published
2021-06-18