WhisperX tag archive

#DOM clobbering

This page collects WhisperX intelligence signals tagged #DOM clobbering. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.

Latest Signals (3)

The Lab · 2026-03-30 18:27:22 · GitHub Issues

1. PrismJS 1.29.0 DOM Clobbering Flaw Opens Door to XSS Attacks

A critical security vulnerability in the widely-used PrismJS syntax highlighter library exposes countless websites to potential cross-site scripting (XSS) attacks. Tracked as CVE-2024-53382, the flaw exists in versions through 1.29.0 and stems from a DOM Clobbering weakness. This vulnerability allows an attacker to inj...

#CVE-2024-53382 #DOM Clobbering #XSS #npm #Supply Chain Security

The Lab · 2026-04-15 09:22:40 · GitHub Issues

2. Webpack 5.94.0 Patches Critical DOM Clobbering Flaw (CVE-2024-43788) Enabling XSS Attacks

A critical security vulnerability in Webpack, the ubiquitous JavaScript module bundler, has been patched in version 5.94.0. The flaw, tracked as CVE-2024-43788, is a DOM Clobbering weakness within Webpack's `AutoPublicPathRuntimeModule`. This vulnerability creates a pathway for cross-site scripting (XSS) attacks, poten...

#Webpack #CVE-2024-43788 #DOM Clobbering #XSS #JavaScript Security

The Lab · 2026-05-13 03:48:21 · GitHub Issues

3. Critical DOM Clobbering XSS Vulnerability Found in Webpack 5 AutoPublicPathRuntimeModule — CVE-2024-43788

A significant security vulnerability has been identified in Webpack 5's `AutoPublicPathRuntimeModule`, exposing applications to Cross-Site Scripting (XSS) attacks through a technique known as DOM Clobbering. Tracked as CVE-2024-43788 and catalogued under GHSA-4vvj-4cpr-p986, the flaw affects all webpack versions up to ...

#webpack #DOM clobbering #XSS #CVE-2024-43788 #security vulnerability