CVE-2026-1513

Medium CVSS: 6.1

billboard.js before 3.18.0 allows an attacker to execute malicious JavaScript due to improper sanitization during chart option binding.

Vendor

Product

CWE

Yayın Tarihi

2026-01-28 02:16:00

Güncelleme

2026-02-02 15:52:36

Source Identifier

cve@navercorp.com

KEV Date Added

CWE-79 Billboard.js MEDIUM Naver 2026

https://cve.naver.com/detail/cve-2026-1513.html

Medium

CVE-2026-23768

lucy-xss-filter before commit 7c1de6d allows an attacker to induce server-side HEAD requests to arbitrary URLs when the…

Medium

CVE-2026-23769

lucy-xss-filter before commit e5826c0 allows an attacker to execute malicious JavaScript due to improper sanitization ca…

Critical

CVE-2025-49223

billboard.js before 3.15.1 was discovered to contain a prototype pollution via the function generate, which could allow…