VulnerableCode Package Details - pkg:npm/Electron@1.7.0

Search for packages

Package details: pkg:npm/Electron@1.7.0

Essentials
History (2)

purl	pkg:npm/Electron@1.7.0
Tags	Ghost

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-mpy2-q2xj-aaaa Aliases: CVE-2017-1000424 GHSA-6h98-cf9g-vmg2	Authentication Bypass by Spoofing Github Electron is vulnerable to a URL Spoofing problem when opening PDFs in PDFium resulting loading arbitrary PDFs that a hacker can control.	1.7.6 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2024-09-17T22:18:42.004456+00:00	GHSA Importer	Affected by	VCID-mpy2-q2xj-aaaa	https://github.com/advisories/GHSA-6h98-cf9g-vmg2	34.0.1
2024-01-03T17:47:50.522815+00:00	GHSA Importer	Affected by	VCID-mpy2-q2xj-aaaa	https://github.com/advisories/GHSA-6h98-cf9g-vmg2	34.0.0rc1