com.microfocus.webjars:swagger-ui-dist@1.0.0-6 vulnerabilities
-
latest version
2.0.0-191
-
first published
4 years ago
-
latest version published
a year ago
-
licenses detected
- [1.0.0-6,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the com.microfocus.webjars:swagger-ui-dist package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
com.microfocus.webjars:swagger-ui-dist is a module that exposes Swagger-UI's entire dist folder as a dependency-free npm module. Use swagger-ui instead, if you'd like to have npm install dependencies for you. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the NOTE: This vulnerability has also been identified as: CVE-2018-25031 How to fix Server-side Request Forgery (SSRF)? A fix was pushed into the |
[0,)
|
com.microfocus.webjars:swagger-ui-dist is a module that exposes Swagger-UI's entire dist folder as a dependency-free npm module. Use swagger-ui instead, if you'd like to have npm install dependencies for you. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the NOTE: This vulnerability has also been identified as: CVE-2021-46708 How to fix Server-side Request Forgery (SSRF)? A fix was pushed into the |
[0,)
|