Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
npm/xmldom — 9 CVEs · VulnScope
pkg:npm/
xmldom
9 total CVEs
CRITICAL
2
HIGH
1
MEDIUM
2
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
9.8
CVE-2022-39353
xmldom allows multiple root nodes in a DOM
from 0, <= 0.6.0
CRITICAL
9.8
CVE-2022-37616
node-xmldom - security update
from 0, <= 0.6.0
HIGH
7.5
CVE-2026-34601
xmldom: XML injection via unsafe CDATA serialization allows attacker-controlled markup insertion
from 0, <= 0.6.0
MEDIUM
6.5
Misinterpretation of malicious XML input
from 0, <= 0.6.0
MEDIUM
4.3
node-xmldom - security update
from 0, < 0.5.0
—
xmldom: Uncontrolled recursion in XML serialization leads to DoS
from 0, <= 0.6.0
—
xmldom has XML injection through unvalidated DocumentType serialization
from 0, <= 0.6.0
—
xmldom has XML node injection through unvalidated processing instruction serialization
from 0, <= 0.6.0
—
xmldom has XML node injection through unvalidated comment serialization
from 0, <= 0.6.0
CVE-2021-32796
CVE-2021-21366
CVE-2026-41673
CVE-2026-41674
CVE-2026-41675
CVE-2026-41672