JavaScript

💬 Programming Languages Related 41
slug: javascript

Explanation

JavaScriptはブラウザの中で動くプログラミング言語で、ボタンを押したときの動きやページの動的な変化を担当します。 近年は Node.js でサーバー側でも使われ、Webアプリ全体で最も使われている言語のひとつです。 脆弱性の文脈では XSS (クロスサイトスクリプティング) という、攻撃者がページに悪意あるスクリプトを混入させる攻撃が代表的です。
📌 Example
npmパッケージ event-stream の事件 (2018) では、人気ライブラリに悪意あるコードが仕込まれ、暗号通貨ウォレットからお金を盗むコードが世界中の Node.js アプリに混入した。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,581

ID Title
CVE-2026-42338 Cross-Site Scripting (XSS) in ip-address (CVE-2026-42338)
CVE-2026-34686 Cross-Site Scripting (XSS) in adobe (CVE-2026-34686)
CVE-2026-34655 Cross-Site Scripting (XSS) in adobe (CVE-2026-34655)
CVE-2026-34658 Cross-Site Scripting (XSS) in adobe (CVE-2026-34658)
CVE-2026-23819 Cross-Site Scripting (XSS) in CVE-2026-23819 (CVE-2026-23819)
CVE-2026-43929 Vulnerability in ssrfcheck (CVE-2026-43929)
CVE-2026-42177 Vulnerability in CVE-2026-42177 (CVE-2026-42177)
CVE-2025-70842 Cross-Site Scripting (XSS) in CVE-2025-70842 (CVE-2025-70842)
CVE-2026-45091 Information Disclosure in sealed-env (CVE-2026-45091)
CVE-2026-44295 Code Injection in protobufjs-cli (CVE-2026-44295)
CVE-2026-44294 Vulnerability in protobufjs (CVE-2026-44294)
CVE-2026-44293 Code Injection in protobufjs (CVE-2026-44293)
CVE-2026-44292 Vulnerability in protobufjs (CVE-2026-44292)
CVE-2026-44291 Vulnerability in protobufjs (CVE-2026-44291)
CVE-2026-44290 Vulnerability in protobufjs (CVE-2026-44290)
CVE-2026-44289 Vulnerability in protobufjs (CVE-2026-44289)
CVE-2026-44288 Vulnerability in protobufjs (CVE-2026-44288)
CVE-2026-42290 OS Command Injection in protobufjs-cli (CVE-2026-42290)
CVE-2026-8390 Use-After-Free in mozilla (CVE-2026-8390)
CVE-2026-8391 Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150.0.3.
CVE-2026-8388 Buffer Overflow in mozilla (CVE-2026-8388)
CVE-2026-8389 Buffer Overflow in mozilla (CVE-2026-8389)
CVE-2026-43930 Vulnerability in parse-server (CVE-2026-43930)
CVE-2026-25789 Cross-Site Scripting (XSS) in CVE-2026-25789 (CVE-2026-25789)
CVE-2026-7626 Information Disclosure in wordpress (CVE-2026-7626)
CVE-2026-45392 Reserved. Details will be published at disclosure.
CVE-2026-43900 Cross-Site Scripting (XSS) in vue (CVE-2026-43900)
CVE-2026-42554 Cross-Site Scripting (XSS) in github.com/gofiber/fiber/v3 (CVE-2026-42554)
CVE-2026-43893 Vulnerability in exiftool-vendored (CVE-2026-43893)
CVE-2026-43897 SSRF (Server-Side Request Forgery) in link-preview-js (CVE-2026-43897)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →