pkg:npm/billboard.js

All known vulnerabilities

• CRITICAL9.8CVE-2025-49223billboard.js allows prototype pollution via the function generate
  from 0, < 3.15.1
• HIGH7.1CVE-2026-1513billboard.js is vulnerable to XSS during chart option binding
  from 0, < 3.18.0