URL Spoofing Vulnerability in Github Electron

URL Spoofing Vulnerability in Github Electron

CVE-2017-1000424 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Github Electron version 1.6.4 - 1.6.11 and 1.7.0 - 1.7.5 is vulnerable to a URL Spoofing problem when opening PDFs in PDFium resulting loading arbitrary PDFs that a hacker can control.

Learn more about our Web Application Penetration Testing UK.