Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
electronjs electron 11.0.0 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-26272
The Electron framework lets you write cross-platform desktop applications using JavaScript, HTML and CSS. In affected versions of Electron IPC messages sent from the main process to a subframe in the renderer process, through webContents.sendToFrame, event.reply or when using the...
Electronjs Electron
Electronjs Electron 9.0.0
Electronjs Electron 10.0.0
Electronjs Electron 11.0.0
Electronjs Electron 12.0.0
7.5
CVSSv3
CVE-2020-15174
In Electron prior to 11.0.0-beta.1, 10.0.1, 9.3.0 or 8.5.1 the `will-navigate` event that apps use to prevent navigations to unexpected destinations as per our security recommendations can be bypassed when a sub-frame performs a top-frame navigation across sites. The issue is pat...
Electronjs Electron
5.6
CVSSv3
CVE-2020-15215
Electron prior to 11.0.0-beta.6, 10.1.2, 9.3.1 or 8.5.2 is vulnerable to a context isolation bypass. Apps using both `contextIsolation` and `sandbox: true` are affected. Apps using both `contextIsolation` and `nodeIntegrationInSubFrames: true` are affected. This is a context isol...
Electronjs Electron 8.0.0
Electronjs Electron 8.0.1
Electronjs Electron 8.0.2
Electronjs Electron 8.0.3
Electronjs Electron 8.1.0
Electronjs Electron 8.1.1
Electronjs Electron 8.2.0
Electronjs Electron 8.2.1
Electronjs Electron 8.2.2
Electronjs Electron 8.2.3
Electronjs Electron 8.2.4
Electronjs Electron 8.2.5
Electronjs Electron 8.3.0
Electronjs Electron 8.3.1
Electronjs Electron 8.3.2
Electronjs Electron 8.3.3
Electronjs Electron 8.3.4
Electronjs Electron 8.4.0
Electronjs Electron 8.4.1
Electronjs Electron 8.5.0
Electronjs Electron 8.5.1
Electronjs Electron 9.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started