CNNVD-202601-4833 Information
Jan 28, 2026
cve
CNNVD ID
CNNVD-202601-4833
Related CVE
- CNNVD Published: 2026-01-28
Description (Chinese)
billboard.js是NAVER开源的一个基于 D3.js 的可重复使用、界面简单的 JavaScript 图表库。 billboard.js 3.18.0之前版本存在安全漏洞,该漏洞源于图表选项绑定期间清理不当,可能导致执行恶意JavaScript代码。
Description (English)
Billboard.js is a reusable JavaScript library based on D3.js. There was a security loophole in the pre-release version of billboard.js 3.18.0, which stemmed from the inappropriate clearance of the chart option during the binding period, which could lead to the implementation of malicious JavaScript codes.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
NAVER
Published
2026-01-28
Last Modified
2026-02-24
References
https://cve.naver.com/detail/cve-2026-1513.html
Patch
https://naver.github.io/billboard.js/
Share on: