Vulnerabilities > Karma Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-25	CVE-2021-23495	Open Redirect vulnerability in Karma Project Karma The package karma before 6.3.16 are vulnerable to Open Redirect due to missing validation of the return_url query parameter. network karma-project CWE-601	5.8
2022-02-05	CVE-2022-0437	Cross-site Scripting vulnerability in Karma Project Karma Cross-site Scripting (XSS) - DOM in NPM karma prior to 6.3.14. network karma-project CWE-79	4.3

Vulnerabilities > Karma Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Karma Project"}]}