Lucene search
K

5 matches found

Veracode
Veracode
added 2025/12/02 10:21 a.m.7 views

Prototype Pollution

happy-dom is vulnerable to Prototype Pollution. The vulnerability is due to untrusted JavaScript running in the same isolate as the main application despite the --disallow-code-generation-from-strings flag, which allows an attacker to deploy prototype-pollution payloads to hijack critical...

9.4CVSS7AI score0.00318EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/10/15 5:16 p.m.81 views

CVE-2025-62410

CVE-2025-62410 affects happy-dom prior to version 20.0.2, where the --disallow-code-generation-from-strings mitigation does not fully isolate untrusted JavaScript. The untrusted script and the rest of the application run in the same Isolate/process, allowing prototype-pollution payloads to hijack...

9.4CVSS6.4AI score0.00318EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/10/10 11:46 p.m.8 views

@adaptive-web/adaptive-ui (>=0.4.1 <=0.13.1), @adaptive-web/adaptive-ui-designer-core (>=0.1.0 <=0.6.0) +373 more potentially affected by CVE-2025-61927 via happy-dom (>=0.0.1 <=1.18.2)

happy-dom NPM version =0.0.1, =0.4.1, =0.1.0, =0.1.0, =0.6.1, =0.0.0, =0.1.1, =0.1.0, =0.11.0, =16.0.0, =0.0.1-beta.9, =0.0.1-beta.3, =0.0.1-alpha.0, =0.0.1-alpha.2, =0.0.1-alpha.5 and more Source cves: CVE-2025-61927 Source advisory: OSV:GHSA-37J7-FG3J-429F...

7.2CVSS5.7AI score0.00613EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-3226

Malicious code in bioql PyPI...

9.3CVSS9AI score0.00741EPSS
Exploits0References8
vulnersOsv
vulnersOsv
added 2024/11/06 3:27 p.m.6 views

@adaptive-web/adaptive-ui (>=0.4.1 <=0.13.1), @adaptive-web/adaptive-ui-designer-core (>=0.1.0 <=0.6.0) +185 more potentially affected by CVE-2024-51757 via happy-dom (>=0.0.1 <=15.0.0)

happy-dom NPM version =0.0.1, =0.4.1, =0.1.0, =0.1.0, =0.6.1, =0.11.0, =16.0.0, =0.0.1-beta.9, =0.0.1-beta.3, =0.0.1-alpha.0, =0.0.1-alpha.2, =0.1.2, =0.0.2, =1.0.4, =1.0.306 - @devsisters/gatsby-preset =3.0.0-rc - @devsisters/gatsby-stack =2.0.0-rc and more Source cves: CVE-2024-51757 Source...

9.3CVSS7.2AI score0.00741EPSS
Exploits0
Rows per page
Query Builder