Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/tauri-apps/tauri

Build smaller, faster, and more secure desktop and mobile applications with a web frontend.
https://github.com/tauri-apps/tauri

Moderate

GSA_kwCzR0hTQS01N2ZtLTU5Mm0tMzRyN84AA8he

iFrames Bypass Origin Checks for Tauri API Access Control
Ecosystems: cargo
Packages: tauri
Source: github
Published: 7 months ago

High

GSA_kwCzR0hTQS0ycmNwLWp2cjQtcjI1Oc4AA2mV

Tauri's Updater Private Keys Possibly Leaked via Vite Environment Variables
Ecosystems: cargo, npm
Packages: tauri-cli, @tauri-apps/cli
Source: github
Published: about 1 year ago

Moderate

GSA_kwCzR0hTQS13bWZmLWdyY3ctamNmbc4AAz-M

Tauri vulnerable to Regression on Filesystem Scope Checks for Dotfiles
Ecosystems: cargo
Packages: tauri
Source: github
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS00d20yLWN3Y2Ytd3d2cM4AAzEx

Tauri Open Redirect Vulnerability Possibly Exposes IPC to External Sites
Ecosystems: cargo
Packages: tauri
Source: github
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS02bXYzLXdtN2otaDR3Nc4AAwgz

Tauri Filesystem Scope Glob Pattern is too Permissive
Ecosystems: cargo
Packages: tauri
Source: github
Published: almost 2 years ago

Low

GSA_kwCzR0hTQS1xOXd2LTIybTktdmhxaM4AAvvi

Tauri Filesystem Scope can be Partially Bypassed
Ecosystems: cargo
Packages: Tauri
Source: github
Published: about 2 years ago

Moderate

GSA_kwCzR0hTQS0yOG04LTlqN3YteDQ5Oc4AAu1w

Tauri's readDir Endpoint Scope can be Bypassed With Symbolic Links
Ecosystems: cargo
Packages: tauri
Source: github
Published: over 2 years ago