Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Plotly Subscribe
Filtered by product Plotly.js
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-46308 1 Plotly 1 Plotly.js 2024-01-09 N/A 9.8 CRITICAL
In Plotly plotly.js before 2.25.2, plot API calls have a risk of __proto__ being polluted in expandObjectPaths or nestedProperty.
CVE-2017-1000006 1 Plotly 1 Plotly.js 2023-12-10 4.3 MEDIUM 6.1 MEDIUM
Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.