Inkdrop
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-44141 | 0.00 | — | 0.00 | Oct 30, 2023 | Inkdrop prior to v5.6.0 allows a local attacker to conduct a code injection attack by having a legitimate user open a specially crafted markdown file. | ||
| CVE-2021-20745 | 0.00 | — | 0.00 | Jun 28, 2021 | Inkdrop versions prior to v5.3.1 allows an attacker to execute arbitrary OS commands on the system where it runs by loading a file or code snippet containing an invalid iframe into Inkdrop. |
- CVE-2023-44141Oct 30, 2023risk 0.00cvss —epss 0.00
Inkdrop prior to v5.6.0 allows a local attacker to conduct a code injection attack by having a legitimate user open a specially crafted markdown file.
- CVE-2021-20745Jun 28, 2021risk 0.00cvss —epss 0.00
Inkdrop versions prior to v5.3.1 allows an attacker to execute arbitrary OS commands on the system where it runs by loading a file or code snippet containing an invalid iframe into Inkdrop.