Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

15 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-7104

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00924EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/23 1:2 a.m.5 views

CVE-2022-37602

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.8CVSS6.8AI score0.00924EPSS
Exploits1
OSV
OSVadded 2022/10/14 12:0 p.m.13 views

GHSA-HCJ4-XF6X-63WJ Grunt-karma vulnerable to prototype pollution

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.8CVSS9.4AI score0.00924EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2022/10/14 12:0 p.m.17 views

Grunt-karma vulnerable to prototype pollution

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.8CVSS6.9AI score0.00924EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2022/10/14 11:15 a.m.8 views

CVE-2022-37602

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.8CVSS0.00924EPSS
Exploits1References3
OSV
OSVadded 2022/10/14 11:15 a.m.1 views

AZL-45309 CVE-2022-37602 affecting package js-jquery 3.5.0-4

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.8CVSS5.8AI score0.00924EPSS
Exploits1References1
OSV
OSVadded 2022/10/14 11:15 a.m.7 views

CVE-2022-37602

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.8CVSS9.4AI score
Exploits0References3
Prion
Prionadded 2022/10/14 11:15 a.m.10 views

Code injection

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

7.5CVSS9.4AI score0.00924EPSS
Exploits1References3Affected Software1
CNNVD
CNNVDadded 2022/10/14 12:0 a.m.1 views

grunt-karma 安全漏洞

grunt-karma is a grunt plugin for Karma by karma-runner individual developers. A security vulnerability exists in karma-runner grunt-karma version 4.0.1, which stems from a prototype contamination vulnerability via the key variable in grunt-karma.js...

9.8CVSS8.3AI score0.00924EPSS
Exploits1References4
Cvelist
Cvelistadded 2022/10/14 12:0 a.m.8 views

CVE-2022-37602

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.7AI score0.00924EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2022/10/14 12:0 a.m.5 views

CVE-2022-37602

Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js...

9.5AI score0.00924EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2022/10/14 12:0 a.m.1 views

PT-2022-24023 · Unknown · Grunt-Karma +1

Name of the Vulnerable Software and Affected Versions: karma-runner grunt-karma version 4.0.1 Description: The issue is related to a prototype pollution vulnerability in the karma-runner grunt-karma. It occurs via the key variable in grunt-karma.js. Recommendations: For version 4.0.1, consider...

9.8CVSS9.3AI score0.00924EPSS
Exploits1References8
CVE
CVEadded 2022/10/14 12:0 a.m.63 views

CVE-2022-37602

Summary : CVE-2022-37602 is a prototype pollution vulnerability in the npm package grunt-karma 4.0.1 (karma-runner integration), reported across multiple sources. The issue arises via the key variable in grunt-karma.js, enabling an attacker to contaminate object prototypes. CVSSv3.1 base metrics ...

9.8CVSS9.4AI score0.00924EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2022/02/05 1:50 a.m.10 views

CVE-2022-0437 Cross-site Scripting (XSS) - DOM in karma-runner/karma

Cross-site Scripting XSS - DOM in NPM karma prior to 6.3.14...

5.4CVSS6.1AI score0.24648EPSS
Exploits1References2
Huntr
Huntradded 2022/01/08 3:7 p.m.19 views

Cross-site Scripting (XSS) - DOM in karma-runner/karma

Description DOM-based XSS is a vulnerability in which the attacker can inject arbitrary javascript code in any DOM sink that supports dynamic code execution. In our case, source is query parameter returnurl and sink is location.href. Proof of Concept 1 Start karma server and visit the following...

4.3CVSS0.8AI score0.24648EPSS
Exploits1
Rows per page
Query Builder