Vulnerabilities > Electronjs > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-09-06 CVE-2023-39956 Code Injection vulnerability in Electronjs Electron
Electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS.
local
low complexity
electronjs CWE-94
6.6
6.6
2022-11-08 CVE-2022-36077 Insufficiently Protected Credentials vulnerability in Electronjs Electron
The Electron framework enables writing cross-platform desktop applications using JavaScript, HTML and CSS.
network
low complexity
electronjs CWE-522
6.1
6.1
2022-06-13 CVE-2022-29257 Unspecified vulnerability in Electronjs Electron
Electron is a framework for writing cross-platform desktop applications using JavaScript (JS), HTML, and CSS.
network
low complexity
electronjs
6.5
6.5
2022-06-13 CVE-2022-29247 Exposure of Resource to Wrong Sphere vulnerability in Electronjs Electron
Electron is a framework for writing cross-platform desktop applications using JavaScript (JS), HTML, and CSS. 		6.8
6.8
2022-03-22 CVE-2022-21718 Missing Authorization vulnerability in Electronjs Electron
Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS.
network
low complexity
electronjs CWE-862
5.0
5.0
2021-10-12 CVE-2021-39184 Missing Authorization vulnerability in Electronjs Electron
Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS.
network
low complexity
electronjs CWE-862
5.0
5.0
2021-08-03 CVE-2021-32772 Cross-site Scripting vulnerability in Electronjs Poddycast 0.8.0
Poddycast is a podcast app made with Electron.
network
electronjs CWE-79
4.3
4.3
2021-01-28 CVE-2020-26272 Exposure of Resource to Wrong Sphere vulnerability in Electronjs Electron
The Electron framework lets you write cross-platform desktop applications using JavaScript, HTML and CSS.
network
low complexity
electronjs CWE-668
6.4
6.4
2020-10-06 CVE-2020-15215 Protection Mechanism Failure vulnerability in Electronjs Electron
Electron before versions 11.0.0-beta.6, 10.1.2, 9.3.1 or 8.5.2 is vulnerable to a context isolation bypass. 		6.8
6.8
2020-10-06 CVE-2020-15174 Unspecified vulnerability in Electronjs Electron
In Electron before versions 11.0.0-beta.1, 10.0.1, 9.3.0 or 8.5.1 the `will-navigate` event that apps use to prevent navigations to unexpected destinations as per our security recommendations can be bypassed when a sub-frame performs a top-frame navigation across sites.
network
electronjs
5.8
5.8