| Bug | Description |
|---|
| TEMP-0000000-AB5257 | dojo can be used as a redirector |
| CVE-2021-23450 | All versions of package dojo are vulnerable to Prototype Pollution via ... |
| CVE-2020-5259 | In affected versions of dojox (NPM package), the jqMix method is vulne ... |
| CVE-2020-5258 | In affected versions of dojo (NPM package), the deepCopy method is vul ... |
| CVE-2020-4051 | In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 ... |
| CVE-2019-10785 | dojox is vulnerable to Cross-site Scripting in all versions before ver ... |
| CVE-2018-15494 | In Dojo Toolkit before 1.14, there is unescaped string injection in do ... |
| CVE-2018-6561 | dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute ... |
| CVE-2015-5654 | Cross-site scripting (XSS) vulnerability in Dojo Toolkit before 1.2 al ... |
| CVE-2010-2276 | The default configuration of the build process in Dojo 0.4.x before 0. ... |
| CVE-2010-2275 | Cross-site scripting (XSS) vulnerability in dijit/tests/_testCommon.js ... |
| CVE-2010-2274 | Multiple open redirect vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1 ... |
| CVE-2010-2273 | Multiple cross-site scripting (XSS) vulnerabilities in Dojo 1.0.x befo ... |
| CVE-2010-2272 | Unspecified vulnerability in iframe_history.html in Dojo 0.4.x before ... |