npm package
mootools
pkg:npm/mootools
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-32821 | — | <= 1.5.2 | — | Jan 3, 2023 | MooTools is a collection of JavaScript utilities for JavaScript developers. All known versions include a CSS selector parser that is vulnerable to Regular Expression Denial of Service (ReDoS). An attack requires that an attacker can inject a string into a CSS selector at runtime, | ||
| CVE-2021-23432 | — | <= 1.5.2 | — | Aug 24, 2021 | This affects all versions of package mootools. This is due to the ability to pass untrusted input to Object.merge() |
- CVE-2021-32821Jan 3, 2023affected <= 1.5.2
MooTools is a collection of JavaScript utilities for JavaScript developers. All known versions include a CSS selector parser that is vulnerable to Regular Expression Denial of Service (ReDoS). An attack requires that an attacker can inject a string into a CSS selector at runtime,
- CVE-2021-23432Aug 24, 2021affected <= 1.5.2
This affects all versions of package mootools. This is due to the ability to pass untrusted input to Object.merge()