Builder

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-67231 MEDIUM This Month

A reflected cross-site scripting (XSS) vulnerability in ToDesktop Builder v0.33.1 allows attackers to execute arbitrary code in the context of a user's browser via a crafted payload. [CVSS 5.9 MEDIUM]

XSS Builder
NVD
CVSS 3.1
5.9
EPSS
0.0%
CVE-2025-67230 HIGH This Week

Improper permissions in the handler for the Custom URL Scheme in ToDesktop Builder v0.33.0 allows attackers with renderer-context access to invoke external protocol handlers without sufficient validation. [CVSS 7.1 HIGH]

Privilege Escalation Builder
NVD
CVSS 3.1
7.1
EPSS
0.0%
CVE-2025-67229 CRITICAL Act Now

ToDesktop Builder v0.32.1 has an improper certificate validation vulnerability allowing man-in-the-middle attackers to inject malicious code into desktop application builds.

Authentication Bypass Builder
NVD
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-67231
EPSS 0% CVSS 5.9
MEDIUM This Month

A reflected cross-site scripting (XSS) vulnerability in ToDesktop Builder v0.33.1 allows attackers to execute arbitrary code in the context of a user's browser via a crafted payload. [CVSS 5.9 MEDIUM]

XSS Builder
NVD
CVE-2025-67230
EPSS 0% CVSS 7.1
HIGH This Week

Improper permissions in the handler for the Custom URL Scheme in ToDesktop Builder v0.33.0 allows attackers with renderer-context access to invoke external protocol handlers without sufficient validation. [CVSS 7.1 HIGH]

Privilege Escalation Builder
NVD
CVE-2025-67229
EPSS 0% CVSS 9.8
CRITICAL Act Now

ToDesktop Builder v0.32.1 has an improper certificate validation vulnerability allowing man-in-the-middle attackers to inject malicious code into desktop application builds.

Authentication Bypass Builder
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy