CVE-2026-3884 Blast Radius

MEDIUM • CVSS 6.1Versions of the package spin.js before 3.0.0 are vulnerable to Cross-site Scripting (XSS) via the spin() function that allows a creation of more than …

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-3884.

Start Free Scan →← Back to CVE-2026-3884