Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 16+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Medium
Electron clipboard.readImage() DoS Vulnerability in Malformed Image Data
github.com · 2026-04-08
electron < 39.8.5 · electron >= 40.0.0-alpha.1 and < 40.8.5 …
Read more
Premium intel
High
Electron contextBridge VideoFrame Transfer Context Isolation Bypass
github.com · 2026-04-04
Electron >= 39.0.0-alpha.1, < 39.8.0 · Electron >= 40.0.0-alpha.1, < 40.7.0 …
Read more
Medium
CVE-2023-38778: Service Worker Spoofs executeJavaScript IPC Replies
CVE-2023-38778 · github.com · 2026-04-04
Electron < 38.6.6 · Electron >= 39.0.0-alpha.1, < 39.8.1 …
Read more
Critical
Electron CVE-2024-4477 Out-of-bounds Read in second-instance IPC
CVE-2024-4477L · github.com · 2026-04-04
Electron >=39.0.0-alpha.1,<39.8.1 · Electron >=40.0.0-alpha.1,<40.8.1 …
Read more
Medium
Electron app.moveToApplicationsFolder AppleScript Injection Vulnerability
github.com · 2026-04-04
electron <38.6.0 · electron >=39.0.0-alpha.1 <39.8.1 …
Read more
High
Electron CVE-2020-34777: Incorrect origin in iframe permission handler
CVE-2020-34777 · github.com · 2026-04-04
Electron < 38.8.6
Read more
Medium
Electron CVE-2024-34773: Registry key path injection in app.setAsDefaultProtocolClient
CVE-2024-34773 · github.com · 2026-04-04
< 38.8.6 · >= 39.0.0, < 39.8.1 …
Read more
Medium
Electron CVE-2024-34775: nodeIntegrationInWorker Scoping Bypass in Shared Renderer Processes
CVE-2024-34775 · github.com · 2026-04-04
electron <38.8.6 · electron >=39.0.0-alpha.1 <39.8.4 …
Read more
High
Electron Use-After-Free in Offscreen Child Window Paint Callback
github.com · 2026-04-04
electron < 39.8.1 · electron >= 40.0.0-alpha.1, < 40.7.0 …
Read more
High
Electron HTTP Response Header Injection in Custom Protocol Handlers
github.com · 2026-04-04
electron < 38.0.6 · electron >= 39.0.0.alpha.1, < 39.0.3 …
Read more
Low
Electron CVE-2023-34766 Unquoted Executable Path Vulnerability on Windows
CVE-2023-34766 · github.com · 2026-04-04
electron < 38.6.6 · electron >= 39.0.0-alpha.1, < 39.8.1 …
Read more
Low
Electron CVE-2024-34766: USB Device Selection Bypasses Filtered List Validation
CVE-2024-34766 · github.com · 2026-04-04
electron < 38.8.6 · electron >= 39.0.0, < 39.8.0 …
Read more
Critical
Electron CVE-2021-34712 Use-After-Free in Download Save Dialog Callback
CVE-2021-34712 · github.com · 2026-04-04
electron < 38.0.6 · electron >= 39.0.0.alpha.1, < 39.0.0 …
Read more
High
Electron Renderer command-line switch injection via undocumented commandLineSwitches webPreference
github.com · 2026-04-04
< 38.8.6 · >= 39.0.0-alpha.1, < 39.8.0 …
Read more
High
Electron Use-After-Free in WebContents Permission Callbacks
github.com · 2026-04-04
electron < 38.8.6 · electron >= 39.0.0-alpha.1 < 39.8.0 …
Read more
CVSS 6.1
Electron Remote API Unauthorized Access Fix
github.com · 2025-09-05

From this webpage screenshot, the following key information about the vulnerability can be obtained: - **Submission ID**: 2e5a9b7 - **Submitter**: @ckerr - **Submission Date**: March 2, 2018 - **Modif…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.