CVE-2026-23481

Publication date

2026-03-23 20:33:32

Family

GitHub_M

State

PUBLISHED

Description

Blinko is an AI-powered card note-taking project. Prior to version 1.8.4, there is an authenticated arbitrary file write vulnerability in saveAdditionalDevFile. This issue has been patched in version 1.8.4.