Skip to content

Information Disclosure: Vulnerable JavaScript Library¶

Identifier: frontend_potential_cve

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

Frontend applications using JavaScript libraries or packages with known vulnerabilities can allow attackers to exploit weak spots, potentially accessing sensitive data or taking control of user sessions.

How we test: We analyze frontend JavaScript code and dependencies to identify libraries and their versions. We check against known CVE databases to detect if vulnerable versions are being used that could expose the application to security risks.

Configuration¶

Example¶

Example configuration:

---
security_tests:
  frontend_potential_cve:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.