Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-35717 PoC — Zonetti Zonote 跨站脚本漏洞

Source
https://github.com/Redfox-Secuirty/Hacking-Electron-Apps-CVE-2020-35717-
Associated Vulnerability
Title:Zonetti Zonote 跨站脚本漏洞 (CVE-2020-35717)
Description:Zonetti Zonote是Zonetti个人开发者的一款基于Javascript语言开发的用于提供Markdown格式笔记功能的软件。 zonote 0.4.0版本及之前版本存在跨站脚本漏洞,该漏洞允许远程代码执行(因为webPreferences中的节点集成是真实的)。
Readme
# Hacking-Electron-Apps-CVE-2020-35717-
File Snapshot

 [4.0K]  /data/pocs/62d64612e3bacca0f7727f142e0dace014c210df
└── [  39]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.