JavaScript

💬 Programming Languages Related 41
slug: javascript

Explanation

JavaScriptはブラウザの中で動くプログラミング言語で、ボタンを押したときの動きやページの動的な変化を担当します。 近年は Node.js でサーバー側でも使われ、Webアプリ全体で最も使われている言語のひとつです。 脆弱性の文脈では XSS (クロスサイトスクリプティング) という、攻撃者がページに悪意あるスクリプトを混入させる攻撃が代表的です。
📌 Example
npmパッケージ event-stream の事件 (2018) では、人気ライブラリに悪意あるコードが仕込まれ、暗号通貨ウォレットからお金を盗むコードが世界中の Node.js アプリに混入した。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,581

ID Title
CVE-2026-45736 Vulnerability in ws (CVE-2026-45736)
CVE-2026-41553 OS Command Injection in dhtmlx (CVE-2026-41553)
CVE-2026-6415 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6415)
CVE-2026-46509 Vulnerability in @ranfdev/deepobj (CVE-2026-46509)
CVE-2026-45348 Cross-Site Scripting (XSS) in pyload-ng (CVE-2026-45348)
CVE-2026-42570 Vulnerability in devalue (CVE-2026-42570)
CVE-2026-42599 Cross-Site Scripting (XSS) in svelte (CVE-2026-42599)
CVE-2026-44633 Authorization Flaw in CVE-2026-44633 (CVE-2026-44633)
CVE-2026-44586 Cross-Site Scripting (XSS) in CVE-2026-44586 (CVE-2026-44586)
CVE-2026-44541 Cross-Site Scripting (XSS) in ethyca-fides (CVE-2026-44541)
CVE-2026-45011 Cross-Site Scripting (XSS) in apostrophe (CVE-2026-45011)
CVE-2026-45013 Vulnerability in apostrophe (CVE-2026-45013)
CVE-2026-45012 SSRF (Server-Side Request Forgery) in apostrophe (CVE-2026-45012)
CVE-2026-44990 Cross-Site Scripting (XSS) in sanitize-html (CVE-2026-44990)
CVE-2026-42853 OS Command Injection in @apostrophecms/cli (CVE-2026-42853)
CVE-2026-1630 Cross-Site Scripting (XSS) in CVE-2026-1630 (CVE-2026-1630)
CVE-2026-44482 Vulnerability in CVE-2026-44482 (CVE-2026-44482)
CVE-2026-44371 Cross-Site Scripting (XSS) in CVE-2026-44371 (CVE-2026-44371)
CVE-2026-46442 Code Injection in flowise (CVE-2026-46442)
CVE-2026-22707 Unrestricted File Upload in @strapi/upload (CVE-2026-22707)
CVE-2026-7481 Cross-Site Scripting (XSS) in gitlab (CVE-2026-7481)
CVE-2026-7377 Cross-Site Scripting (XSS) in gitlab (CVE-2026-7377)
CVE-2026-6073 Cross-Site Scripting (XSS) in gitlab (CVE-2026-6073)
CVE-2025-12669 Code Injection in gitlab (CVE-2025-12669)
CVE-2026-5361 Cross-Site Scripting (XSS) in wordpress (CVE-2026-5361)
CVE-2026-44369 Vulnerability in CVE-2026-44369 (CVE-2026-44369)
CVE-2026-45228 Cross-Site Scripting (XSS) in vue (CVE-2026-45228)
CVE-2025-27852 Cross-Site Scripting (XSS) in garmin (CVE-2025-27852)
CVE-2026-44376 Cross-Site Scripting (XSS) in CVE-2026-44376 (CVE-2026-44376)
CVE-2026-39428 Cross-Site Scripting (XSS) in CVE-2026-39428 (CVE-2026-39428)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →