jgraph

Top products

The 15 most recently published vulnerabilities affecting jgraph.

• CVE-2026-46642draw.io: XSS via crafted cell label when opening a .drawio file6.1Jun 10, 2026
• CVE-2026-42195Unvalidated gitlab URL parameter redirects OAuth authorize step to attacker-controlled host3.4May 8, 2026
• CVE-2023-3975OS Command Injection in jgraph/drawio9.8Jul 27, 2023
• CVE-2023-3974OS Command Injection in jgraph/drawio9.8Jul 27, 2023
• CVE-2023-3973Cross-site Scripting (XSS) - Reflected in jgraph/drawio6.1Jul 27, 2023
• CVE-2023-3398Denial of Service in jgraph/drawio7.5Jun 26, 2023
• CVE-2023-3026Cross-site Scripting (XSS) - Stored in jgraph/drawio6.1Jun 1, 2023
• CVE-2022-3873Cross-site Scripting (XSS) - DOM in jgraph/drawio6.1Nov 7, 2022
• CVE-2022-40440mxGraph v4.2.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the setTooltips() function.6.1Oct 11, 2022
• CVE-2022-3223Cross-site Scripting (XSS) - Stored in jgraph/drawio6.1Sep 16, 2022
• CVE-2022-3133OS Command Injection in jgraph/drawio7.8Sep 9, 2022
• CVE-2022-3138Cross-site Scripting (XSS) - Generic in jgraph/drawio6.1Sep 8, 2022
• CVE-2022-3148Cross-site Scripting (XSS) - Generic in jgraph/drawio6.1Sep 8, 2022
• CVE-2022-3127Cross-site Scripting (XSS) - Stored in jgraph/drawio5.4Sep 5, 2022
• CVE-2022-3065Improper Access Control in jgraph/drawio7.5Sep 2, 2022