Vulnerabilities > Stealjs

DATE CVE VULNERABILITY TITLE RISK
2022-09-20 CVE-2022-37259 Unspecified vulnerability in Stealjs Steal 2.2.4
A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the string variable in babel.js.
network
low complexity
stealjs
7.5
2022-09-20 CVE-2022-37265 Unspecified vulnerability in Stealjs Steal 2.2.4
Prototype pollution vulnerability in stealjs steal 2.2.4 via the alias variable in babel.js.
network
low complexity
stealjs
critical
9.8
2022-09-16 CVE-2022-37258 Unspecified vulnerability in Stealjs Steal 2.2.4
Prototype pollution vulnerability in function convertLater in npm-convert.js in stealjs steal 2.2.4 via the packageName variable in npm-convert.js.
network
low complexity
stealjs
critical
9.8
2022-09-15 CVE-2022-37260 Unspecified vulnerability in Stealjs Steal 2.2.4
A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the input variable in main.js.
network
low complexity
stealjs
7.5
2022-09-15 CVE-2022-37262 Unspecified vulnerability in Stealjs Steal 2.2.4
A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the source and sourceWithComments variable in main.js.
network
low complexity
stealjs
7.5
2022-09-15 CVE-2022-37264 Unspecified vulnerability in Stealjs Steal 2.2.4
Prototype pollution vulnerability in stealjs steal 2.2.4 via the optionName variable in main.js.
network
low complexity
stealjs
critical
9.8
2022-09-15 CVE-2022-37257 Unspecified vulnerability in Stealjs Steal 2.2.4
Prototype pollution vulnerability in function convertLater in npm-convert.js in stealjs steal 2.2.4 via the requestedVersion variable in npm-convert.js.
network
low complexity
stealjs
critical
9.8
2022-09-15 CVE-2022-37266 Unspecified vulnerability in Stealjs Steal 2.2.4
Prototype pollution vulnerability in function extend in babel.js in stealjs steal 2.2.4 via the key variable in babel.js.
network
low complexity
stealjs
critical
9.8