6 matches found
MAL-2025-25600 Malicious code in lootsie-sdk-ui-es5-inferno (npm)
The package lootsie-sdk-ui-es5-inferno was found to contain malicious code...
The vulnerabilities of the functions function#copy and function#toStringTokens in ECMAScript 5 from the es5-ext package allow a attacker to cause a service failure.
The vulnerabilities of the functioncopy and functiontoStringTokens functions in ECMAScript 5, part of the es5-ext package, involve uncontrolled resource consumption. Exploiting these vulnerabilities can allow attackers to cause service failures...
PT-2024-6044 · Es5-Ext +2 · Es5-Ext +2
Name of the Vulnerable Software and Affected Versions: es5-ext versions prior to 0.10.63 Description: The issue is related to the es5-ext package, which contains ECMAScript 5 extensions. Passing functions with very long names or complex default argument names into functioncopy or...
SUSE CVE-2015-4516
Mozilla Firefox before 41.0 allows remote attackers to bypass certain ECMAScript 5 aka ES5 API protection mechanisms and modify immutable properties, and consequently execute arbitrary JavaScript code with chrome privileges, via a crafted web page that does not use ES5 APIs...
The vulnerability of the Firefox browser allows a hacker to bypass the protection mechanisms of ECMAScript 5 (ES5) APIs and execute arbitrary code.
The vulnerability of Firefox browsers is related to errors in security settings. Exploiting this vulnerability allows a malicious actor to bypass the protection mechanisms of ECMAScript 5 ES5 APIs and execute arbitrary code using a specially crafted page that does not utilize ES5 mechanisms...
UBUNTU-CVE-2015-4516
Mozilla Firefox before 41.0 allows remote attackers to bypass certain ECMAScript 5 aka ES5 API protection mechanisms and modify immutable properties, and consequently execute arbitrary JavaScript code with chrome privileges, via a crafted web page that does not use ES5 APIs...