CVE-2024-34347P3HIGH≥ 0.5.0, < 0.8.02024-04-22
CVE-2024-34347 [HIGH] CWE-77 @hoppscotch/cli affected by Sandbox Escape in @hoppscotch/js-sandbox leads to RCE
@hoppscotch/cli affected by Sandbox Escape in @hoppscotch/js-sandbox leads to RCE
### Observations
The Hoppscotch desktop app takes multiple precautions to be secure against arbitrary JavaScript and system command execution. It does not render user-controlled HTML or Markdown, uses Tauri instead of Electron, and sandboxes pre-request scripts with a simple yet secure implementation usi
ghsaosv