Vulnerable JavaScript Libraries

This page loads vulnerable JavaScript libraries for testing vulnerability scanners.

Warning: These libraries contain known security vulnerabilities and should only be used in testing environments.

Loaded Libraries:

  • jQuery 1.8.3 (XSS vulnerabilities)
  • Prototype.js (XSS & prototype pollution)
  • Underscore.js 1.13.0 (prototype pollution)
  • Lodash (prototype pollution)
  • RequireJS 2.3.5 (path traversal)

Direct Library URLs: