VYPR

Lute

by Lute

CVEs (2)

  • CVE-2026-25647Feb 6, 2026
    risk 0.00cvss epss 0.00

    Lute is a structured Markdown engine supporting Go and JavaScript. Lute 1.7.6 and earlier (as used in SiYuan before) has a Stored Cross-Site Scripting (XSS) vulnerability in the Markdown rendering engine. An attacker can inject malicious JavaScript into a Markdown text/note.…

  • CVE-2019-15783CriAug 29, 2019
    risk 0.00cvss 9.8epss 0.02

    Lute-Tab before 2019-08-23 has a buffer overflow in pdf_print.cc.