4.23.3
8 years ago
4 months ago
Known vulnerabilities in the org.webjars.npm:browserslist package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
org.webjars.npm:browserslist is a Share target browsers between different front-end tools, like Autoprefixer, Stylelint and babel-env-preset Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries. PoC by Yeting Li
How to fix Regular Expression Denial of Service (ReDoS)? Upgrade | [,4.16.5) |