Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

notesnook — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in notesnook, with AI-generated Chinese analysis, references, and POCs.

Vendor: streetwriters

CVE IDTitleCVSSSeverityPaused
CVE-2026-33978 Notesnook: Stored XSS in mobile share editor via unescaped web clip title metadata CWE-79 5.4 Medium2026-04-01
CVE-2026-31876 Notesnook has Stored XSS via unsanitized Twitter/X embed URL in editor (`tweetToEmbed`) CWE-79 5.4 Medium2026-03-11

All 2 known CVE vulnerabilities affecting notesnook with full Chinese analysis, references, and POCs where available.