CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Cvelist•added 2026/03/24 3:16 p.m.•18 views

CVE-2026-33336 Vikunja Desktop vulnerable to Remote Code Execution via same-window navigation

Vikunja is an open-source self-hosted task management platform. Starting in version 0.21.0 and prior to version 2.2.0, the Vikunja Desktop Electron wrapper enables nodeIntegration in the main BrowserWindow and does not restrict same-window navigations. An attacker who can place a link in...

6.5CVSS0.00387EPSS

Exploits1References2

Positive Technologies•added 2026/03/24 12:0 a.m.•4 views

PT-2026-27444

6.5CVSS6.8AI score0.00387EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-1401

Malware in sbrugna...

7.5CVSS7.4AI score0.00296EPSS

Exploits0References5

OSV•added 2020/10/06 6:15 p.m.•9 views

CVE-2020-15174

In Electron before versions 11.0.0-beta.1, 10.0.1, 9.3.0 or 8.5.1 the will-navigate event that apps use to prevent navigations to unexpected destinations as per our security recommendations can be bypassed when a sub-frame performs a top-frame navigation across sites. The issue is patched in...

7.5CVSS7.5AI score

Exploits0References2

NVD•added 2020/10/06 6:15 p.m.•7 views

CVE-2020-15174

7.5CVSS0.00296EPSS

Exploits0References2

Github Security Blog•added 2020/10/06 2:24 p.m.•49 views

Unpreventable top-level navigation

Impact The will-navigate event that apps use to prevent navigations to unexpected destinations as per our security recommendations can be bypassed when a sub-frame performs a top-frame navigation across sites. Patches 11.0.0-beta.1 10.0.1 9.3.0 8.5.1 Workarounds Sandbox all your iframes using the...

7.5CVSS2.3AI score0.00296EPSS

Exploits0References4Affected Software1

OSV•added 2020/10/06 2:24 p.m.•1 views

GHSA-2Q4G-W47C-4674 Unpreventable top-level navigation

7.5CVSS5.9AI score0.00296EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by