Vulnerabilities

CVE-2020-9443

by Fred · 18/03/2020

Zulip Desktop before 4.0.3 loaded untrusted content in an Electron webview with web security disabled, which can be exploited for XSS in a number of ways. This especially affects Zulip Desktop 2.3.82.

Date published : 2020-03-18

https://blog.zulip.org/2020/02/29/zulip-desktop-4-0-3-security-release/

Similar

Tags: Cybersecurity Alert