Browse Security Advisories
Security Advisories for electron for https://github.com/electron/electron in npm Clear Filters
High
almost 2 years ago
Electron affected by libvpx's heap buffer overflow in vp8 encoding
npm
electron
Moderate
almost 2 years ago
Electron vulnerable to out-of-package code execution when launched with arbitrary cwd
npm
electron
Moderate
almost 2 years ago
Electron context isolation bypass via nested unserializable return value
npm
electron
High
almost 2 years ago
Electron's Content-Secrity-Policy disabling eval not applied consistently in renderers with sandbox disabled
npm
electron
Moderate
almost 3 years ago
Exfiltration of hashed SMB credentials on Windows via file:// redirect
npm
electron
Moderate
about 3 years ago
AutoUpdater module fails to validate certain nested components of the bundle
npm
electron
Low
about 3 years ago
Compromised child renderer processes could obtain IPC access without nodeIntegrationInSubFrames being enabled
npm
electron
Low
over 3 years ago
Renderers can obtain access to random bluetooth device without permission in Electron
npm
electron
Moderate
almost 4 years ago
Electron's sandboxed renderers can obtain thumbnails of arbitrary files through the nativeImage API
npm
electron
High
about 5 years ago
Context isolation bypass via leaked cross-context objects in Electron
npm
electron
High
about 7 years ago
Electron webPreferences vulnerability can be used to perform remote code execution
npm
electron
High
over 7 years ago
Electron protocol handler browser vulnerable to Command Injection
npm
electron
High
over 7 years ago
Electron Vulnerable to Code Execution by Re-Enabling Node.js Integration
npm
electron
Filter by Severity
Filter by Ecosystem
maven
6,782
packagist
5,383
pypi
4,882
npm
4,236
go
2,878
nuget
1,702
cargo
1,076
rubygems
928
hex
37
swift
36
actions
34
pub
10
Filter by Package
directus
39
parse-server
33
electron
28
next
26
@openzeppelin/contracts-upgradeable
22
@openzeppelin/contracts
21
flowise
17
tinymce
16
sequelize
16
ghost
15
ckeditor4
15
undici
15
joplin
14
angular
14
swagger-ui
14
vite
13
nodebb
13
strapi
13
marked
12
vm2
12
TinyMCE
11
bootstrap
11
tinymce/tinymce
11
nocodb
11
matrix-js-sdk
11
handlebars
11
org.webjars:bootstrap
9
serve
9
@evershop/evershop
9
twbs/bootstrap
9
n8n
9
bootstrap
9
@strapi/strapi
9
bootstrap
9
next-auth
9
uptime-kuma
9
systeminformation
9
matrix-react-sdk
9
matrix-appservice-irc
9
jquery-rails
8
shescape
8
@directus/api
8
@haxtheweb/haxcms-nodejs
8
steal
8
org.webjars.npm:jquery
8
node-forge
8
tar
8
elliptic
8
urijs
8
url-parse
8
editor.md
8
jquery
8
validator
8
jsrsasign
8
dompurify
8
express-cart
8
npm
8
snyk-broker
7
bootstrap-sass
7
bootstrap-sass
7
org.webjars.npm:jquery-ui
7
jQuery
7
mermaid
7
bootstrap.sass
7
jQuery.UI.Combined
7
mongoose
7
sanitize-html
7
hapi
7
lodash
7
hermes-engine
7
lodash-rails
7
vega
7
jquery-ui-rails
7
jquery-ui
7
total.js
7
@sveltejs/kit
6
axios
6
aaptjs
6
mattermost-desktop
6
openpgp
6
parse-url
6
safe-eval
6
rsshub
6
prismjs
6
@strapi/plugin-users-permissions
6
tarteaucitronjs
6
keystone
5
xlsx
5
passport-wsfed-saml2
5
vditor
5
@saltcorn/server
5
lodash-es
5
express
5
sweetalert2
5
public
5
@backstage/plugin-scaffolder-backend
5
froala-editor
5
better-auth
5
mysql2
5
trix
5
astro
5
ejs
5
@lobehub/chat
5
total4
5
@keystone-6/core
5
rendertron
5
dojo
5
aws-cdk-lib
5
katex
5
fastify
5
ws
5
yarn
5
ua-parser-js
5
fast-xml-parser
4
pnpm
4
@node-saml/node-saml
4
@auth0/nextjs-auth0
4
apostrophe
4
@apollo/gateway
4
awsiotsdk
4
remarkable
4
xml-crypto
4
snyk
4
hono
4
multer
4
convert-svg-core
4
jspdf
4
engine.io
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
realms-shim
4
apollo-server-core
4
valine
4
follow-redirects
4
vega-functions
4
yui
4
simple-markdown
4
petite-vue-i18n
4
ses
4
simple-git
4
qs
4
@anthropic-ai/claude-code
4
auth0-lock
4
vue-i18n
4
ecstatic
4
hummus
4
erxes
4
muhammara
4
jquery-validation
4
nuxt
4
safer-eval
4
generator-jhipster
4
meshcentral
4
mongo-express
4
materialize-css
4
moment
4
@finos/git-proxy
4
jsonwebtoken
4
auth0-js
4
code-server
4
mongosh
4
@intlify/vue-i18n-core
4
aws-iot-device-sdk-v2
4
glance
4
@uppy/companion
3
@jmondi/url-to-png
3
json-pointer
3
connect
3
node-red-dashboard
3
serialize-javascript
3
tar-fs
3
node-saml
3
jose-node-cjs-runtime
3
mysql
3
mxgraph
3
bson
3
codecov
3
snowflake-sdk
3
bin-links
3
yapi-vendor
3
slpjs
3
@strapi/utils
3
@soketi/soketi
3
nodemailer
3
stimulsoft-dashboards-js
3
@fedify/fedify
3
http-live-simulator
3
keycloak-connect
3
layui
3
ids-enterprise
3
angular-expressions
3
apollo-server
3
parsel
3
passport-saml
3
statics-server
3
docsify
3
json-ptr
3
localhost-now
3
serialize-to-js
3
simplehttpserver
3
@hapi/subtext
3