Javascript Exploits

255 exploits tracked across all sources.

Sort: Newest Stars
CVE-2012-2589 EXPLOITDB javascript
(pending title)
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-4344. Reason: This candidate is a duplicate of CVE-2012-4344. Notes: All CVE users should reference CVE-2012-4344 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2024-47554 GITHUB MEDIUM javascript
Apache Commons IO <2.14.0 - DoS
Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted input. This issue affects Apache Commons IO: from 2.0 before 2.14.0. Users are recommended to upgrade to version 2.14.0 or later, which fixes the issue.
by PawelMurdzek
CVSS 4.3
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by anuththara2007-W
3 stars
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by l4rm4nd
79 stars
CVE-2025-55182 GITHUB CRITICAL javascript
React Server Components <19.2.0 - RCE
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
by react2shell-repo-menagerie
CVSS 10.0
CVE-2025-55182 GITHUB CRITICAL javascript
React Server Components <19.2.0 - RCE
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
by react2shell-repo-menagerie
CVSS 10.0
CVE-2025-55182 GITHUB CRITICAL javascript
React Server Components <19.2.0 - RCE
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
by react2shell-repo-menagerie
CVSS 10.0
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
CVE-2025-66478 GITHUB javascript
(pending title)
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
by react2shell-repo-menagerie
By Source
All 255 Exploitdb 50,196 Writeup 43,086 Nomisec 19,741 Metasploit 3,028 Github 2,090 Vulncheck_xdb 887 Inthewild 518 Gitlab 432 Gitee 415 Patchapalooza 312
By Language
text 31,307 python 5,762 ruby 5,759 c 3,536 perl 2,854 html 2,051 php 1,332 bash 459 java 359 javascript 255 c++ 242 shell 54 go 38 postscript 25 xml 24