19 matches found
NPM: Electerm has an unvalidated shell.openExternal that allows arbitrary protocol execution via terminal link click
NPM: Electerm has an unvalidated shell.openExternal that allows arbitrary protocol execution via terminal link click vulnerability discovered by ? in WordPress Npm electerm versions = 3.8.15...
CVE-2025-29509
CVE-2025-29509 affects Jan v0.5.14 and earlier. An RCE is possible when a user clicks a rendered link in a conversation, due to the app opening external websites and an exposed electronAPI, with unfiltered URLs in shell.openExternal(). The CVSS v3.1 base score is 8.8 (HIGH) with network attack ve...
CVE-2024-48463
Bruno before 1.29.1 uses Electron shell.openExternal without validation of http or https for opening windows within the Markdown docs viewer...
CVE-2024-48463
Bruno before 1.29.1 uses Electron shell.openExternal without validation of http or https for opening windows within the Markdown docs viewer...
CVE-2024-48463
Bruno IDE Desktop prior to version 1.29.1 exposes a vulnerability where Electron’s shell.openExternal is used to open URLs in the Markdown docs viewer without validating http/https. This can lead to untrusted URL handling and, per the connected reports, potential remote code execution on systems ...
CVE-2024-48463
Bruno before 1.29.1 uses Electron shell.openExternal without validation of http or https for opening windows within the Markdown docs viewer...
CVE-2023-42222
WebCatalog before 49.0 is vulnerable to Incorrect Access Control. WebCatalog calls the Electron shell.openExternal function without verifying that the URL is for an http or https resource, in some circumstances...
CVE-2023-42222
WebCatalog (desktop app) before version 49.0 is vulnerable to Incorrect Access Control due to Electron shell.openExternal being invoked without validating http/https URLs. The CVE-2023-42222 description and Red Hat/PRION entries confirm this issue affects WebCatalog pre-49.0 with potential for co...
Rocket.Chat: Insecure use of shell.openExternal() leads to RCE in Rocket.Chat-Desktop
Rocket.Chat-Desktop passes the parameter url of openInternalVideoChatWindow to shell.openExternal, which may lead to remote code execution internalVideoChatWindow.tsL17. To exploit the vulnerability, the internal video chat window must be disabled or a Mac App Store build must be used...
GHSA-MJR5-V9C9-MM7G Joplin Remote Code Execution
Joplin version 2.8.8 allows an external attacker to execute arbitrary commands remotely on any client that opens a link in a malicious markdown file, via Joplin. This is possible because the application does not properly validate the schema/protocol of existing links in the markdown file before...
CVE-2022-40277
Joplin version 2.8.8 allows an external attacker to execute arbitrary commands remotely on any client that opens a link in a malicious markdown file, via Joplin. This is possible because the application does not properly validate the schema/protocol of existing links in the markdown file before...
Zulip Desktop Remote Code Execution Vulnerability
Zulip is a powerful open source group chat application that combines the immediacy of live chat with the productivity benefits of threaded conversations.Zulip Desktop is the Zulip desktop client. A remote code execution vulnerability exists in Zulip Desktop versions prior to 5.0.0. The...
CVE-2020-10857
Zulip Desktop (Windows/macOS/Linux) has a remote code execution vulnerability in all versions before 5.0.0. The issue stems from improper use of shell.openExternal and shell.openItem with untrusted content, which can allow an attacker to execute arbitrary code on the user’s system. The Red Hat an...
CVE-2020-10857
Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution...
CVE-2020-15258 Insecure use of shell.openExternal in Wire
In Wire before 3.20.x, shell.openExternal was used without checking the URL. This vulnerability allows an attacker to execute code on the victims machine by sending messages containing links with arbitrary protocols. The victim has to interact with the link and sees the URL that is opened. The...
CVE-2020-25019
jitsi-meet-electron aka Jitsi Meet Electron before 2.3.0 calls the Electron shell.openExternal function without verifying that the URL is for an http or https resource, in some circumstances...
CVE-2020-25019
CVE-2020-25019 affects jitsi-meet-electron (Jitsi Meet Electron) up to version 2.3.0. The vulnerability arises when the Electron shell.openExternal function is invoked without verifying that the target URL is http or https, in certain circumstances. Impact details are not fully elaborated in the ...
CVE-2020-25019
jitsi-meet-electron aka Jitsi Meet Electron before 2.3.0 calls the Electron shell.openExternal function without verifying that the URL is for an http or https resource, in some circumstances...
Automattic: Remote Code Execution in Wordpress Desktop
An attacker can create a malicious page that when viewed or edited in Wordpress Desktop App will results in remote code execution. This issue looks to be around this line of code: https://github.com/Automattic/wp-desktop/blob/develop/desktop/window-handlers/external-links/index.jsL38 If...