Remote Code Execution Through Cross-Site Scripting In Electron Apps

CVE-2020–35717 — RCE through XSS in zonote Electron App

Published in

InfoSec Write-ups

4 min readJan 5, 2021

For those unfamiliar with the term, CVE stands for Common Vulnerability and Exposure. Each CVE record contains a standard identifier, a brief description, and references to related vulnerability reports and advisories. MITRE corporation keeps a list of records with all publicly disclosed vulnerabilities that is free for use.

Remote Code Execution Through Cross-Site Scripting In Electron Apps

CVE-2020–35717 — RCE through XSS in zonote Electron App

Written by Héctor Martos