Certain input when passed into remarkable prior to 1.4.1 will bypass the bad protocol check that disallows the javascript: scheme allowing for javascript: url's to be injected into the rendered content.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
remarkable project remarkable |