Apps based on Electron framework are vulnerable to attack
In Summary : The number of applications that are based on the Electron framework means that, potentially, there is a very large number of...
https://updatesinfosec.blogspot.com/2018/05/apps-based-on-electron-framework-are.html
In Summary :
The number of applications that are based on the Electron framework means that, potentially, there is a very large number of people affected by the vulnerability. Electron is incredibly popular because of the fact it makes it easy to port HTML, CSS and JS web apps into desktop apps. Security researcher Brendan Scarvell found the nodeIntegration attribute that can be applied in Electron configuration, in combination with the webviewTag attribute, allows for a potential cross-site scripting exploit [...]
kindly refer the following link as follow up :
https://goo.gl/hxa3jj
The number of applications that are based on the Electron framework means that, potentially, there is a very large number of people affected by the vulnerability. Electron is incredibly popular because of the fact it makes it easy to port HTML, CSS and JS web apps into desktop apps. Security researcher Brendan Scarvell found the nodeIntegration attribute that can be applied in Electron configuration, in combination with the webviewTag attribute, allows for a potential cross-site scripting exploit [...]
kindly refer the following link as follow up :
https://goo.gl/hxa3jj
