EUVD-2025-115881

Malicious code in bulma-package-karma-pegasus npm...

CVE-2021-23495

The package karma before 6.3.16 are vulnerable to Open Redirect due to missing validation of the returnurl query parameter...

CVE-2021-23495

Summary: Karma (JavaScript test runner) before 6.3.16 is vulnerable to Open Redirect due to missing validation of the return_url query parameter. Affected component: karma

CVE-2021-23495 Open Redirect

The package karma before 6.3.16 are vulnerable to Open Redirect due to missing validation of the returnurl query parameter...