All 3 CVE vulnerabilities found in serialize-javascript, with AI-generated Chinese analysis, references, and POCs.
Vendor: yahoo
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-34043 | Serialize JavaScript has CPU Exhaustion Denial of Service via crafted array-like objects CWE-400 | 5.9 | Medium | 2026-03-31 |
| CVE-2020-7660 | serialize-javascript 代码问题漏洞 | 9.8 | - | 2020-06-01 |
| CVE-2019-16769 | Affected versions of serialize-javascript are vulnerable to Cross-site Scripting (XSS) CWE-79 | 4.2 | Medium | 2019-12-05 |
All 3 known CVE vulnerabilities affecting serialize-javascript with full Chinese analysis, references, and POCs where available.