pkg:npm/@haxtheweb/video-player
共 2 筆 CVE
✅ 檢查你的版本
所有已知漏洞
- —CVE-2026-46396Stored XSS via <iframe> in HAX CMS allows access to sensitive client-side data and account takeoverfrom 0, < 26.0.0
- —CVE-2026-46496HAX CMS: Stored XSS via '<video-player>' component allows arbitrary JavaScript execution and token theftfrom 0, < 26.0.0