CVE-2025-49223
EUVD-2025-1680204.06.2025, 03:15
billboard.js before 3.15.1 was discovered to contain a prototype pollution via the function generate, which could allow attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| naver | billboard.js | 𝑥 < 3.15.1 |
𝑥
= Vulnerable software versions
Ubuntu Releases