| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-4055 | 7.8 |
The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of Service (ReDoS)."
|
06-06-2022 - 17:18 | 23-01-2017 - 21:59 | |
| CVE-2019-8331 | 4.3 |
In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
|
16-05-2022 - 19:52 | 20-02-2019 - 16:29 | |
| CVE-2015-9251 | 4.3 |
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
|
08-01-2021 - 12:15 | 18-01-2018 - 23:29 |