Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
TodesktopBuilder

3 matches found

CVE
CVEadded 2026/01/23 12:0 a.m.7 views

CVE-2025-67231

CVE-2025-67231 is a confirmed reflected XSS in ToDesktop Builder v0.33.1. The issue allows an attacker to execute arbitrary code in the context of a user’s browser via a crafted payload. Documented by multiple feeds (NVD, Red Hat, CIRCL, attackerkb, CVE lists) consistently describe a reflected XS...

5.9CVSS5.6AI score0.00019EPSS
CVE
CVEadded 2026/01/23 12:0 a.m.5 views

CVE-2025-67229

CVE-2025-67229 affects ToDesktop Builder v0.32.1. The vulnerability is an improper certificate validation that allows an unauthenticated, on-path attacker to spoof backend responses by exploiting insufficient certificate validation. CVSS 3.1 base score 9.8 (CRITICAL) with Network attack vector, n...

9.8CVSS5.5AI score0.00018EPSS
CVE
CVEadded 2026/01/23 12:0 a.m.4 views

CVE-2025-67230

The CVE-2025-67230 issue affects ToDesktop Builder v0.33.0, where improper permissions in the Custom URL Scheme handler allow attackers with renderer-context access to invoke external protocol handlers without sufficient validation. This creates a risk of abuse via unvalidated external protocol i...

7.1CVSS5.4AI score0.00019EPSS