denoland Cyber Security Vulnerability Stats and Metrics

Database Permission Bypass in Deno JavaScript Runtime

CVE-2025-48935

DenolandDeno5.5MEDIUM

Environment Variable Disclosure in Deno Runtime by DenoLand

CVE-2025-48934

DenolandDeno5.5MEDIUM

Permissive Access Issue in Deno Runtime by Deno Land

CVE-2025-48888

DenolandDeno5.5MEDIUM

Authentication Tag Validation Issue in Deno Runtime

CVE-2025-24015

DenolandDeno7.7HIGH

XSS vulnerability in serveDir API of @std/http/file-server on POSIX systems

CVE-2024-52793

DenolandStd

Deno 1.44.0 vulnerability affects .npmrc credentials

CVE-2024-37150

DenolandDeno6.5MEDIUM

Deno Sandbox Vulnerability Allows Unintended File Access

CVE-2024-34346

DenolandDeno8.5HIGH

Deno improperly checks import specifier hostname

CVE-2024-27932

DenolandDeno4.6MEDIUM

Premature Closure of File Descriptors Leads to Arbitrary Code Execution

CVE-2024-27933

DenolandDeno8.8HIGH

Arbitrary Code Execution Vulnerability in Deno Runtime

CVE-2024-27934

DenolandDeno8.8HIGH

Cross-Session Data Contamination Vulnerability Affects Deno Versions 1.35.1-1.36.3

CVE-2024-27935

DenolandDeno8.3HIGH

Deno runtime vulnerable to spoofed permission prompts

CVE-2024-27936

DenolandDeno6.5MEDIUM

Deno Fixes Path Traversal Vulnerability in MakeTemp APIs

CVE-2024-27931

DenolandDeno6.5MEDIUM

Deno missing "--allow-net" permission check for built-in Node modules

CVE-2023-33966

denolanddeno9.8CRITICAL

Deno is vulnerable to interactive `run` permission prompt spoofing via improper ANSI neutralization

CVE-2023-28446

DenolandDeno8.8HIGH

Deno improperly handles resizable ArrayBuffer

CVE-2023-28445

DenolandDeno10CRITICAL

Interactive permission prompt spoofing in Deno

CVE-2023-22499

DenolandDeno7.5HIGH

Sandbox bypass leading to arbitrary code execution in Deno

CVE-2022-24783

DenolandDeno10CRITICAL

Static imports inside dynamically imported modules do not adhere to permission checks

CVE-2021-32619

DenolandDeno9.8CRITICAL

denoland Summary

Vulnerability Published:

Sort By:

4 June 2025

Database Permission Bypass in Deno JavaScript Runtime

Environment Variable Disclosure in Deno Runtime by DenoLand

Permissive Access Issue in Deno Runtime by Deno Land

3 June 2025

Authentication Tag Validation Issue in Deno Runtime

22 November 2024

XSS vulnerability in serveDir API of @std/http/file-server on POSIX systems

6 June 2024

Deno 1.44.0 vulnerability affects .npmrc credentials

7 May 2024

Deno Sandbox Vulnerability Allows Unintended File Access

21 March 2024

Deno improperly checks import specifier hostname

Premature Closure of File Descriptors Leads to Arbitrary Code Execution

Arbitrary Code Execution Vulnerability in Deno Runtime

Cross-Session Data Contamination Vulnerability Affects Deno Versions 1.35.1-1.36.3

Deno runtime vulnerable to spoofed permission prompts

5 March 2024

Deno Fixes Path Traversal Vulnerability in MakeTemp APIs

31 May 2023

Deno missing "--allow-net" permission check for built-in Node modules

24 March 2023

Deno is vulnerable to interactive `run` permission prompt spoofing via improper ANSI neutralization

Deno improperly handles resizable ArrayBuffer

17 January 2023

Interactive permission prompt spoofing in Deno

25 March 2022

Sandbox bypass leading to arbitrary code execution in Deno

28 May 2021

Static imports inside dynamically imported modules do not adhere to permission checks