CVE-2022-0437
Cross-site Scripting (XSS) – DOM in NPM karma prior to 6.3.14.
Date published : 2022-02-04
https://huntr.dev/bounties/64b67ea1-5487-4382-a5f6-e8a95f798885
https://github.com/karma-runner/karma/commit/839578c45a8ac42fbc1d72105f97eab77dd3eb8a