CVE-2023-23623 - How a Security Policy Bypass in Electron Could Put Your Desktop Apps at Risk
---
Introduction: The Hidden Flaw in Popular JavaScript Desktop Apps
Electron is the backbone of many apps you probably use every day—Slack, Visual Studio
CVE-2023-39956 - How Electron Apps Became Vulnerable to Local Directory Hijack – Full Exploit Explained
Electron has quickly become the go-to framework for building cross-platform desktop applications using JavaScript, HTML, and CSS. Popular apps like VS Code, Discord, and Slack
CVE-2023-29198 - Understanding and Exploiting the Electron Context Isolation Bypass
If you’ve ever written a desktop app in JavaScript, chances are you’ve used Electron. Electron is popular because it lets you build desktop
CVE-2022-36077 - How Sensitive Data Escaped Through Electron Redirects
Summary:
CVE-2022-36077 reveals a severe vulnerability in the Electron framework before versions 21..-beta.1, 20..1, 19..11, and 18.3.7. Electron, widely
Episode
00:00:00
00:00:00