CVE-2023-42222

WebCatalog before 49.0 is vulnerable to Incorrect Access Control. WebCatalog calls the Electron shell.openExternal function without verifying that the URL is for an http or https resource, in some circumstances...

evilvte: User-assisted execution of arbitrary code

Background VTE based, highly customizable terminal emulator Description Steve Kemp of Debian identified a flaw in evilvte which does not properly validate hypertext links. Please review the Debian bug report referenced below. Impact Remote attackers could execute arbitrary code by enticing a user...