Build XML from JSON without C/C++ based libraries
85%
Total Score
100
94
64
100
0
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2026-476466 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. fast-xml-builder is vulnerable to XML Injection in versions 1.0.0 - 1.2.0. | 1.0.0 - 1.2.0 | Medium |
CVE-2026-44665 fast-xml-builder is vulnerable to XML Injection (aka Blind XPath Injection) in versions 0.0.0 - 1.1.6. | 0.0.0 - 1.1.6 | Medium |
CVE-2026-44664 fast-xml-builder is vulnerable to XML Injection (aka Blind XPath Injection) in versions 1.1.5 - 1.1.5. | 1.1.5 - 1.1.5 | Medium |
| Dependency | Last Release | Score |
|---|---|---|
xml-naming Version ^0.3.0 | — | — |
path-expression-matcher Version ^1.6.2 | — | — |
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant