Vulnerabilities > Hello JS Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-08-11 | CVE-2021-26505 | Unspecified vulnerability in Hello.Js Project Hello.Js 1.18.6 Prototype pollution vulnerability in MrSwitch hello.js version 1.18.6, allows remote attackers to execute arbitrary code via hello.utils.extend function. | 9.8 |
2020-10-06 | CVE-2020-7741 | Cross-site Scripting vulnerability in Hello.Js Project Hello.Js This affects the package hellojs before 1.18.6. | 7.5 |