Vulnerabilities > Webpack JS

DATE CVE VULNERABILITY TITLE RISK
2024-08-27 CVE-2024-43788 Cross-site Scripting vulnerability in Webpack.Js Webpack
Webpack is a module bundler.
network
low complexity
webpack-js CWE-79
6.1
2023-03-13 CVE-2023-28154 Unspecified vulnerability in Webpack.Js Webpack
Webpack 5 before 5.76.0 does not avoid cross-realm object access.
network
low complexity
webpack-js
critical
9.8
2022-10-14 CVE-2022-37603 Unspecified vulnerability in Webpack.Js Loader-Utils
A Regular expression denial of service (ReDoS) flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js.
network
low complexity
webpack-js
7.5
2022-10-12 CVE-2022-37601 Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js.
network
low complexity
webpack-js debian
critical
9.8
2022-10-11 CVE-2022-37599 Unspecified vulnerability in Webpack.Js Loader-Utils
A Regular expression denial of service (ReDoS) flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the resourcePath variable in interpolateName.js.
network
low complexity
webpack-js
7.5
2018-09-21 CVE-2018-14732 Improper Input Validation vulnerability in Webpack.Js Webpack-Dev-Server
An issue was discovered in lib/Server.js in webpack-dev-server before 3.1.6.
network
low complexity
webpack-js CWE-20
5.0