JavaScript

💬 Programming Languages Related 41
slug: javascript

Explanation

JavaScriptはブラウザの中で動くプログラミング言語で、ボタンを押したときの動きやページの動的な変化を担当します。 近年は Node.js でサーバー側でも使われ、Webアプリ全体で最も使われている言語のひとつです。 脆弱性の文脈では XSS (クロスサイトスクリプティング) という、攻撃者がページに悪意あるスクリプトを混入させる攻撃が代表的です。
📌 Example
npmパッケージ event-stream の事件 (2018) では、人気ライブラリに悪意あるコードが仕込まれ、暗号通貨ウォレットからお金を盗むコードが世界中の Node.js アプリに混入した。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,570

ID Title
CVE-2017-5157 Cross-Site Scripting (XSS) in schneider-electric (CVE-2017-5157)
CVE-2017-5961 Cross-Site Scripting (XSS) in ionizecms (CVE-2017-5961)
CVE-2017-5963 Cross-Site Scripting (XSS) in caddy-project (CVE-2017-5963)
CVE-2016-10216 Cross-Site Scripting (XSS) in sivann (CVE-2016-10216)
CVE-2017-5942 Cross-Site Scripting (XSS) in wordpress (CVE-2017-5942)
CVE-2017-5954 Unsafe Deserialization in serialize-to-js-project (CVE-2017-5954)
CVE-2017-5858 Vulnerability in conversejs (CVE-2017-5858)
CVE-2017-5941 Unsafe Deserialization in node-serialize-project (CVE-2017-5941)
CVE-2016-5902 Cross-Site Scripting (XSS) in ibm (CVE-2016-5902)
CVE-2016-6032 Cross-Site Scripting (XSS) in ibm (CVE-2016-6032)
CVE-2017-1127 Cross-Site Scripting (XSS) in ibm (CVE-2017-1127)
CVE-2017-1128 Cross-Site Scripting (XSS) in ibm (CVE-2017-1128)
CVE-2016-6096 Cross-Site Scripting (XSS) in ibm (CVE-2016-6096)
CVE-2016-9642 Out-of-Bounds Read in dos (CVE-2016-9642)
CVE-2017-5218 SQL Injection in sqli (CVE-2017-5218)
CVE-2016-9704 Cross-Site Scripting (XSS) in ibm (CVE-2016-9704)
CVE-2016-2992 Cross-Site Scripting (XSS) in ibm (CVE-2016-2992)
CVE-2016-5881 Cross-Site Scripting (XSS) in ibm (CVE-2016-5881)
CVE-2016-5940 Cross-Site Scripting (XSS) in ibm (CVE-2016-5940)
CVE-2016-5942 Cross-Site Scripting (XSS) in ibm (CVE-2016-5942)
CVE-2016-8943 Cross-Site Scripting (XSS) in ibm (CVE-2016-8943)
CVE-2016-9731 Cross-Site Scripting (XSS) in ibm (CVE-2016-9731)
CVE-2016-6047 Cross-Site Scripting (XSS) in ibm (CVE-2016-6047)
CVE-2016-6054 Cross-Site Scripting (XSS) in ibm (CVE-2016-6054)
CVE-2016-6061 Cross-Site Scripting (XSS) in ibm (CVE-2016-6061)
CVE-2016-6072 Cross-Site Scripting (XSS) in ibm (CVE-2016-6072)
CVE-2016-6113 Cross-Site Scripting (XSS) in ibm (CVE-2016-6113)
CVE-2016-6123 Cross-Site Scripting (XSS) in ibm (CVE-2016-6123)
CVE-2016-6125 Cross-Site Scripting (XSS) in ibm (CVE-2016-6125)
CVE-2016-8920 Cross-Site Scripting (XSS) in ibm (CVE-2016-8920)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →