Vulnerabilities

CVE-2025-58401

by Fred · 05/09/2025

Obsidian GitHub Copilot Plugin versions prior to 1.1.7 store Github API token in cleartext form. As a result, an attacker may perform unauthorized operations on the linked Github account.

More information : https://github.com/Pierrad/obsidian-github-copilot/releases/tag/1.1.7

Similar

Tags: Cybersecurity Alert