JavaScript

💬 Programming Languages Related 41
slug: javascript

Explanation

JavaScriptはブラウザの中で動くプログラミング言語で、ボタンを押したときの動きやページの動的な変化を担当します。 近年は Node.js でサーバー側でも使われ、Webアプリ全体で最も使われている言語のひとつです。 脆弱性の文脈では XSS (クロスサイトスクリプティング) という、攻撃者がページに悪意あるスクリプトを混入させる攻撃が代表的です。
📌 Example
npmパッケージ event-stream の事件 (2018) では、人気ライブラリに悪意あるコードが仕込まれ、暗号通貨ウォレットからお金を盗むコードが世界中の Node.js アプリに混入した。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,570

ID Title
CVE-2026-54286 Path Traversal in hono (CVE-2026-54286)
CVE-2026-54287 Vulnerability in hono (CVE-2026-54287)
CVE-2026-12321 Vulnerability in mozilla (CVE-2026-12321)
CVE-2026-48723 OS Command Injection in CVE-2026-48723 (CVE-2026-48723)
CVE-2026-48714 Vulnerability in i18next-http-middleware (CVE-2026-48714)
CVE-2026-48713 Vulnerability in i18next-fs-backend (CVE-2026-48713)
CVE-2026-48157 Cross-Site Scripting (XSS) in slim/slim (CVE-2026-48157)
CVE-2026-48887 Unauthenticated Broken Access Control in JS Help Desk <= 3.0.9 versions.
CVE-2026-48886 Unauthenticated SQL Injection in JS Help Desk <= 3.0.9 versions.
CVE-2026-54285 Vulnerability in @opentelemetry/core (CVE-2026-54285)
CVE-2026-54281 Authorization Flaw in @nestjs/platform-fastify (CVE-2026-54281)
CVE-2026-54257 Vulnerability in electron (CVE-2026-54257)
CVE-2026-54271 Code Injection in protobufjs-cli (CVE-2026-54271)
CVE-2026-54270 Vulnerability in protobufjs (CVE-2026-54270)
CVE-2026-49294 Cross-Site Scripting (XSS) in CVE-2026-49294 (CVE-2026-49294)
CVE-2026-48712 Vulnerability in protobufjs (CVE-2026-48712)
CVE-2026-54269 Vulnerability in protobufjs (CVE-2026-54269)
CVE-2026-54264 Information Disclosure in @angular/service-worker (CVE-2026-54264)
CVE-2026-54268 Vulnerability in @angular/common (CVE-2026-54268)
CVE-2026-54266 Vulnerability in @angular/common (CVE-2026-54266)
CVE-2026-54265 Cross-Site Scripting (XSS) in @angular/compiler (CVE-2026-54265)
CVE-2026-50557 Cross-Site Scripting (XSS) in @angular/core (CVE-2026-50557)
CVE-2026-50556 Cross-Site Scripting (XSS) in @angular/platform-server (CVE-2026-50556)
CVE-2026-50555 Cross-Site Scripting (XSS) in @angular/platform-server (CVE-2026-50555)
CVE-2026-53655 Vulnerability in tar (CVE-2026-53655)
CVE-2026-53632 Vulnerability in launch-editor (CVE-2026-53632)
CVE-2026-53571 Path Traversal in vite (CVE-2026-53571)
CVE-2026-53550 Vulnerability in js-yaml (CVE-2026-53550)
CVE-2026-49356 Path Traversal in @babel/core (CVE-2026-49356)
CVE-2026-50184 Information Disclosure in @angular/service-worker (CVE-2026-50184)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →