Vulnerabilities > Leanote > Desktop > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-07 | CVE-2024-0849 | Path Traversal vulnerability in Leanote Desktop 2.7.0 Leanote version 2.7.0 allows obtaining arbitrary local files. | 5.5 |
| 2018-01-03 | CVE-2017-1000492 | Cross-site Scripting vulnerability in Leanote Desktop 2.5 Leanote-desktop version v2.5 is vulnerable to a XSS which leads to code execution due to enabled node integration | 6.1 |