📦 Hello.js

by Hello.js Project

🔍 What is Hello.js?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2021-26505

CRITICAL CVSS 9.8 Aug 11, 2023

A prototype pollution vulnerability in hello.js version 1.18.6 allows attackers to modify JavaScript object prototypes, potentially leading to arbitrary code execution. This affects any application us...

CVE-2020-7741

CRITICAL CVSS 9.9 Oct 6, 2020

CVE-2020-7741 is a Cross-Site Scripting (XSS) vulnerability in hellojs library versions before 1.18.6. Attackers can inject malicious JavaScript via the oauth_redirect parameter, which gets passed to ...