JavaScript is a high-level, interpreted programming language essential for creating interactive web applications, running directly in web browsers to enable dynamic content and user interface enhancements. It is integral to the web development stack, working seamlessly with HTML and CSS to build responsive and feature-rich websites.

JavaScript

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction.

Identifiant CVE	Sévérité	Score	Technologies	Nom du composant	Exploit CISA KEV	A corrigé	Date de publication
CVE-2025-66456	CRITICAL	9.1	JavaScript	elysia	Non	Oui	Dec 09, 2025
CVE-2025-66457	HIGH	7.5	JavaScript	elysia	Non	Oui	Dec 09, 2025
CVE-2025-65849	MEDIUM	6.9	JavaScript	altcha	Non	Non	Dec 08, 2025
CVE-2025-66202	MEDIUM	6.5	JavaScript	astro	Non	Oui	Dec 09, 2025
CVE-2025-14284	MEDIUM	5.1	JavaScript	@tiptap/extension-link	Non	Oui	Dec 09, 2025

CVE-2025-65849:
JavaScript Analyse et atténuation des vulnérabilités

6.9

Apparenté JavaScript Vulnérabilités:

Évaluez votre posture de sécurité dans le cloud

Ressources Wiz supplémentaires

PEACH

Prêt(e) à voir Wiz en action ?

CVE-2025-65849: JavaScript Analyse et atténuation des vulnérabilités