karma-runner/karma

Releases248

Frequency2 weeks 4 days

Last Release almost 2 years ago

Stars12K

Spectacular Test Runner for JavaScript

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-23495 ↗	Feb 25, 2022Friday, 25 February 2022, 20:15	5.4 MEDIUM	5.8 MEDIUM
The package karma before 6.3.16 are vulnerable to Open Redirect due to missing validation of the return_url query parameter.
CVE-2022-0437 ↗	Feb 5, 2022Saturday, 5 February 2022, 02:15	6.1 MEDIUM	4.3 MEDIUM
Cross-site Scripting (XSS) - DOM in NPM karma prior to 6.3.14.