Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

tarteaucitron.js — Vulnerabilities & Security Advisories 5

All 5 CVE vulnerabilities found in tarteaucitron.js, with AI-generated Chinese analysis, references, and POCs.

Vendor: AmauriC

CVE IDTitleCVSSSeverityPublished
CVE-2026-22809 tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability CWE-1333 4.4 Medium2026-01-13
CVE-2025-48939 tarteaucitron.js vulnerable to DOM Clobbering via document.currentScript CWE-138 4.2 Medium2025-07-03
CVE-2025-31476 tarteaucitron.js allows url scheme injection via unfiltered inputs CWE-79 4.8 Medium2025-04-07
CVE-2025-31475 tarteaucitron.js allows prototype pollution via custom text injection CWE-1321 5.5 Medium2025-04-07
CVE-2025-31138 tarteaucitron.js allows UI manipulation via unrestricted CSS injection CWE-1021 5.5 Medium2025-04-07

All 5 known CVE vulnerabilities affecting tarteaucitron.js with full Chinese analysis, references, and POCs where available.