karma is a simple tool that allows you to execute JavaScript code in multiple real browsers. karma versions prior to 6.3.16 have a security vulnerability that stems from a lack of validation of returned url query parameters, which could be exploited to perform redirect attacks.
CPE | Name | Operator | Version |
---|---|---|---|
karma karma | lt | 6.3.16 |