Vulnerabilities > Getmedis

DATE CVE VULNERABILITY TITLE RISK
2018-06-26 CVE-2018-1000536 Cross-site Scripting vulnerability in Getmedis Medis
Medis version 0.6.1 and earlier contains a XSS vulnerability evolving into code execution due to enabled nodeIntegration for the renderer process vulnerability in Key name parameter on new key creation that can result in Unauthorized code execution in the victim's machine, within the rights of the running application.
network
low complexity
getmedis CWE-79
6.1