org.webjars.npm:acorn@5.6.2 vulnerabilities
-
latest version
8.12.1
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
23 days ago
-
licenses detected
- [0.4.2,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.webjars.npm:acorn package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
org.webjars.npm:acorn is a tiny, fast JavaScript parser written in JavaScript. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS)
via a regex in the form of This string is not a valid How to fix Regular Expression Denial of Service (ReDoS)? Upgrade |
[5.5.0,6.4.1)
[7.0.0,7.1.1)
|