Security Vulnerability CVE-2019-9785 for GitNote
Description
gitnote 3.1.0 allows remote attackers to execute arbitrary code via a crafted Markdown file, as demonstrated by a javascript:window.parent.top.require(\'child_process\').execFile substring in the onerror attribute of an IMG element.
Affected Applications
GitNote