GHSA-vv7r-8584-6pm6MediumCVSS 7.3
A vulnerability was found in tiddly-gittly TidGi-Desktop up to 0.13.0. This impacts an unknown...
🔗 CVE IDs covered (1)
📋 Description
A vulnerability was found in tiddly-gittly TidGi-Desktop up to 0.13.0. This impacts an unknown function of the file src/services/wiki/wikiWorker/loadWikiTiddlersWithSubWikis.ts of the component Git Repository Import. The manipulation results in code injection. The attack may be performed from remote. The exploit has been made public and could be used.
🔗 References (8)
- https://github.com/tiddly-gittly/TidGi-Desktop/security/advisories/GHSA-9hc2-hjx8-q6pv
- https://nvd.nist.gov/vuln/detail/CVE-2026-14722
- https://github.com/tiddly-gittly/TidGi-Desktop
- https://vuldb.com/cve/CVE-2026-14722
- https://vuldb.com/submit/847648
- https://vuldb.com/vuln/376309
- https://vuldb.com/vuln/376309/cti
- https://github.com/advisories/GHSA-vv7r-8584-6pm6