Vulnerabilities > Hello JS Project

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-11	CVE-2021-26505	Unspecified vulnerability in Hello.Js Project Hello.Js 1.18.6 Prototype pollution vulnerability in MrSwitch hello.js version 1.18.6, allows remote attackers to execute arbitrary code via hello.utils.extend function. network low complexity hello-js-project critical	9.8
2020-10-06	CVE-2020-7741	Cross-site Scripting vulnerability in Hello.Js Project Hello.Js This affects the package hellojs before 1.18.6. network low complexity hello-js-project CWE-79	7.5

Vulnerabilities > Hello JS Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Hello JS Project"}]}