Lucene search
Veracode Vulnerability DatabaseVERACODE:34018HistoryFeb 07, 2022 - 5:09 a.m.
Cross-site Scripting (XSS)
2022-02-0705:09:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
cross-site scripting
returnurl parameter
karma.js
malicious urls
software
EPSS
0.001
Percentile
43.5%
karma is vulnerable to cross-site scripting. An attacker can inject and execute malicious javascript through the returnUrl parameter in the complete function of karma.js by navigating to the malicious URLs
Related
github
github
Cross-site Scripting in karma
2022-02-06 00:00:54
cve
cve
CVE-2022-0437
2022-02-05 02:15:06
cvelist
cvelist
CVE-2022-0437 Cross-site Scripting (XSS) - DOM in karma-runner/karma
2022-02-05 01:50:10
nuclei
nuclei
karma-runner DOM-based Cross-Site Scripting
2022-03-21 12:21:11
huntr
huntr
Cross-site Scripting (XSS) - DOM in karma-runner/karma
2022-01-08 15:07:49
nvd
nvd
CVE-2022-0437
2022-02-05 02:15:06
osv
osv
Cross-site Scripting in karma
2022-02-06 00:00:54
CVE-2022-0437
2022-02-05 02:15:06
prion
prion
Cross site scripting
2022-02-05 02:15:00
cnvd
cnvd
karma cross-site scripting vulnerability
2022-02-09 00:00:00