Code Execution via Cross Site Scripting in Tagspaces (A file manager)

Reported a code execution via cross site scripting in TagSpaces. The XSS is used to escape the sandbox of electron to gain Code Execution in TagSpaces.
  • Posted on: 2021-06-11 14:36
  • Reading Time: 0 min
  • Share on:
    Y Combinator
    Reddit
    Mastodon

References