Description
No description available.
Recommendation
Update the happy-dom package to the latest compatible version. Followings are version details:
- Affected version(s): < 20.0.0
- Patched version(s): 20.0.0
References
Related Issues
- happy-dom's `--disallow-code-generation-from-strings` is not sufficient for isolating untrusted JavaScript - CVE-2025-62410
- DocsGPT Allows Remote Code Execution - CVE-2025-0868
- Lobe Chat Desktop vulnerable to Remote Code Execution via XSS in Chat Messages - CVE-2025-59417
- Signal K Server Vulnerable to Remote Code Execution via Malicious npm Package - CVE-2025-68619
- Tags:
- npm
- happy-dom
Anything's wrong? Let us know Last updated on October 13, 2025