vulnerabilities in Electron-based applications Archives

Desktop AppsMay 1, 2022Hacking Electron Apps (CVE-2020-35717)

In this blog, we’ll discuss how the zonote Electron app can be exploited via the infamous CVE-2020-35717 vulnerability. The CVE reads zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution (because nodeIntegration in webPreferences is true). Electron Applications Electron is a well-known open-source library that is used by well-established firms...

Contact Us

info@redfoxsec.com

training@redfoxsec.com

1 (800) 917-0850

Our Offices

Legal

We combine years of worldwide expertise and tenacity to help our clients navigate the ever-changing cyber security threat landscape.

Get in Touch

Get in Touch

Desktop AppsMay 1, 2022Hacking Electron Apps (CVE-2020-35717)

May 26, 2023The Ultimate Checklist for Your Penetration Testing Report

May 24, 2023Importance of Good Scoping in Penetration Testing

May 24, 2023ChatGPT for Pen Testing (Pt. 2)

May 20, 2023ChatGPT for Pen Testing (Pt. 1)

May 20, 2023Cybersecurity Challenges Facing Small Businesses Today

Contact Us

Our Offices

Menu

Legal

Follow Us

Get in Touch