2022-03-28 13:37:04
mitre
PUBLISHED
Leanote 2.7.0 is vulnerable to Cross Site Scripting (XSS) in the markdown type note. This leads to remote code execution with payload :