Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2021-01-01	CVE-2020-35717	Cross-site Scripting vulnerability in Electronjs Zonote zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution (because nodeIntegration in webPreferences is true). network low complexity electronjs CWE-79 critical	9.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.