Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
npm/@xmldom/xmldom — 8 CVEs · VulnScope
pkg:npm/
@xmldom/xmldom
8 total CVEs
CRITICAL
2
HIGH
1
MEDIUM
1
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
9.8
CVE-2022-39353
xmldom allows multiple root nodes in a DOM
from 0, < 0.7.7
CRITICAL
9.8
CVE-2022-37616
node-xmldom - security update
>= 0.8.0, < 0.8.3
HIGH
7.5
CVE-2026-34601
xmldom: XML injection via unsafe CDATA serialization allows attacker-controlled markup insertion
from 0, < 0.8.12
MEDIUM
6.5
Misinterpretation of malicious XML input
from 0, < 0.7.0
—
xmldom: Uncontrolled recursion in XML serialization leads to DoS
from 0, < 0.8.13
—
xmldom has XML injection through unvalidated DocumentType serialization
from 0, < 0.8.13
—
xmldom has XML node injection through unvalidated processing instruction serialization
from 0, < 0.8.13
—
xmldom has XML node injection through unvalidated comment serialization
from 0, < 0.8.13
CVE-2021-32796
CVE-2026-41673
CVE-2026-41674
CVE-2026-41675
CVE-2026-41672