Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2022-37602
Disclosure Date: October 14, 2022 (last updated February 24, 2025)
Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js.
0
Attacker Value
Unknown
CVE-2021-23495
Disclosure Date: February 25, 2022 (last updated February 23, 2025)
The package karma before 6.3.16 are vulnerable to Open Redirect due to missing validation of the return_url query parameter.
0
Attacker Value
Unknown
CVE-2022-0437
Disclosure Date: February 05, 2022 (last updated February 23, 2025)
Cross-site Scripting (XSS) - DOM in NPM karma prior to 6.3.14.
0
Attacker Value
Unknown
CVE-2020-7626
Disclosure Date: April 02, 2020 (last updated February 21, 2025)
karma-mojo through 1.0.1 is vulnerable to Command Injection. It allows execution of arbitrary commands via the config argument.
0
