Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Atom Security Vulnerabilities

cve
cve

CVE-2018-1000006

GitHub Electron versions 1.8.2-beta.3 and earlier, 1.7.10 and earlier, 1.6.15 and earlier has a vulnerability in the protocol handler, specifically Electron apps running on Windows 10, 7 or 2008 that register custom protocol handlers can be tricked in arbitrary command execution if the user clicks....

8.8CVSS

8.7AI Score

0.969EPSS

2018-01-24 11:29 PM
35
2
cve
cve

CVE-2017-1000424

Github Electron version 1.6.4 - 1.6.11 and 1.7.0 - 1.7.5 is vulnerable to a URL Spoofing problem when opening PDFs in PDFium resulting loading arbitrary PDFs that a hacker can...

4.3CVSS

4.6AI Score

0.001EPSS

2022-10-03 04:23 PM
26
cve
cve

CVE-2012-1102

It was discovered that the XML::Atom Perl module before version 0.39 did not disable external entities when parsing XML from potentially untrusted sources. This may allow attackers to gain read access to otherwise protected resources, depending on how the library is...

7.5CVSS

7.4AI Score

0.002EPSS

2021-07-09 11:15 AM
27
2
cve
cve

CVE-2021-20732

The ATOM (ATOM - Smart life App for Android versions prior to 1.8.1 and ATOM - Smart life App for iOS versions prior to 1.8.2) does not verify server certificate properly, which allows man-in-the-middle attackers to eavesdrop on encrypted communication via a crafted...

5.9CVSS

5.2AI Score

0.001EPSS

2021-06-09 02:15 AM
34
4
cve
cve

CVE-2020-35897

An issue was discovered in the atom crate before 0.3.6 for Rust. An unsafe Send implementation allows a cross-thread data...

4.7CVSS

4.7AI Score

0.0004EPSS

2020-12-31 10:15 AM
26
2
cve
cve

CVE-2016-10620

atom-node-module-installer installs node modules for atom-shell applications. atom-node-module-installer binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled.....

8.1CVSS

8.3AI Score

0.002EPSS

2018-06-01 06:29 PM
27
cve
cve

CVE-2016-1202

Untrusted search path vulnerability in Atom Electron before 0.33.5 allows local users to gain privileges via a Trojan horse Node.js module in a parent directory of a directory named on a require...

7.8CVSS

7.5AI Score

0.0004EPSS

2016-04-25 06:59 PM
22
cve
cve

CVE-2007-3135

Cross-site scripting (XSS) vulnerability in atomPhotoBlog.php in Atom Photoblog 1.0.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the tag...

5.7AI Score

0.013EPSS

2007-06-08 04:30 PM
23
cve
cve

CVE-2007-3134

Multiple cross-site scripting (XSS) vulnerabilities in atomPhotoBlog.php in Atom PhotoBlog 1.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Your Name, (2) Your Homepage, and (3) Your Comment fields, when using "Approve...

5.8AI Score

0.002EPSS

2007-06-08 04:30 PM
22