Serialize-javascript@* Security Vulnerabilities and Issues — Serialize-javascript@* CVE List

Lucene search

VerizonSerialize-javascript*

2 matches found

CVE•added 2020/06/01 3:15 p.m.•138 views

CVE-2020-7660

serialize-javascript prior to 3.1.0 allows remote attackers to inject arbitrary code via the function "deleteFunctions" within "index.js".

8.1CVSS8AI score0.02979EPSS

CVE•added 2019/12/05 7:15 p.m.•94 views

CVE-2019-16769

The serialize-javascript npm package before version 2.1.1 is vulnerable to Cross-site Scripting (XSS). It does not properly mitigate against unsafe characters in serialized regular expressions. This vulnerability is not affected on Node.js environment since Node.js's implementation of RegExp.protot...

5.4CVSS4.9AI score0.00406EPSS