Vulnerabilities > Serialize TO JS Project > Serialize TO JS > High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-10-24	CVE-2017-15871	Infinite Loop vulnerability in Serialize-To-Js Project Serialize-To-Js The deserialize function in serialize-to-js through 1.1.1 allows attackers to cause a denial of service via vectors involving an Immediately Invoked Function Expression "function()" substring, as demonstrated by a "function(){console.log(" call or a simple infinite loop. network low complexity serialize-to-js-project CWE-835	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.