AIKIDO-2024-10485

electron is vulnerable to Cross-site Scripting (XSS)

65

Medium

electron JS

AIKIDO-2024-10485: electron is vulnerable to Cross-site Scripting (XSS) in versions 31.0.0 - 31.7.4, 32.0.0 - 32.2.4 and 33.0.0 - 33.2.0.

Cross-site Scripting (XSS)
Vuln in 31.0.0 - 31.7.4
Fixed in 31.7.5
Vuln in 32.0.0 - 32.2.4
Fixed in 32.2.5
Vuln in 33.0.0 - 33.2.0
Fixed in 33.2.1
CVE-2024-11110
TL;DR

Who does this affect?

How can it be fixed?

Background info

Link to vendor website

Logo
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Grauwpoort 1, 9000 Ghent, Belgium
🇺🇸 95 Third St, 2nd Fl, San Francisco, CA 94103, US