Browse all 5 CVE security advisories affecting jsbroks. AI-powered Chinese analysis, POCs, and references for each vulnerability.
jsbroks develops JavaScript-based web applications and libraries, primarily serving frontend development needs. The researcher has identified five CVEs, with common vulnerability classes including cross-site scripting (XSS) and remote code execution (RCE), often stemming from improper input validation and insecure deserialization. Security analysis reveals a pattern of vulnerabilities in client-side components, with some issues allowing attackers to execute arbitrary code or manipulate user sessions. No major public security incidents have been documented, but the consistent identification of similar flaw types suggests potential areas for improved security practices in JavaScript development workflows.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-7681 | jsbroks COCO Annotator Dataset API datasets.py authorization — COCO AnnotatorCWE-639 | 6.5 | Medium | 2026-05-03 |
| CVE-2026-7680 | jsbroks COCO Annotator Data Endpoint datasets.py path traversal — COCO AnnotatorCWE-22 | 4.3 | Medium | 2026-05-03 |
| CVE-2026-2109 | jsbroks COCO Annotator Delete Category undo improper authorization — COCO AnnotatorCWE-285 | 5.4 | Medium | 2026-02-07 |
| CVE-2026-2108 | jsbroks COCO Annotator Endpoint long_task denial of service — COCO AnnotatorCWE-404 | 5.3 | Medium | 2026-02-07 |
| CVE-2024-10141 | jsbroks COCO Annotator Session predictable state — COCO AnnotatorCWE-341 | 3.7 | Low | 2024-10-19 |
This page lists every published CVE security advisory associated with jsbroks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.