pkg:npm/tarteaucitronjs

共 7 筆 CVEMEDIUM7

✅ 檢查你的版本

所有已知漏洞

  • MEDIUM6.1CVE-2025-1467tarteaucitron Cross-site Scripting (XSS)
    from 0, < 1.17.0
  • MEDIUM5.5CVE-2025-31475tarteaucitron.js allows prototype pollution via custom text injection
    from 0, < 1.20.1
  • MEDIUM5.5CVE-2025-31138tarteaucitron.js allows UI manipulation via unrestricted CSS injection
    from 0, < 1.20.1
  • MEDIUM4.8CVE-2025-31476tarteaucitron.js allows url scheme injection via unfiltered inputs
    from 0, < 1.20.1
  • MEDIUM4.6CVE-2023-3620tarteaucitron.js vulnerable to Cross-site Scripting
    from 0, < 1.13.1
  • MEDIUM4.4CVE-2026-22809tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability
    from 0, < 1.29.0
  • MEDIUM4.2CVE-2025-48939tarteaucitron.js vulnerable to DOM Clobbering via document.currentScript
    from 0, < 1.22.0