The update process in Xmind 3.4.1 and earlier allow remote attackers to execute arbitrary code via a man-in-the-middle attack.Referenceshttps://web.archive.org/web/20160822124252/http://rampartssecurity.com/docs/Xmind-MITM.pdf
