org.webjars.npm:eventsource@1.1.0 vulnerabilities
-
latest version
2.0.2
-
latest non vulnerable version
-
first published
8 years ago
-
latest version published
2 years ago
-
licenses detected
- [0.1.6,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.webjars.npm:eventsource package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Information Exposure by allowing cookies and the authorization headers to be leaked to external sites. How to fix Information Exposure? Upgrade |
[,1.1.1)
[2.0.0,2.0.2)
|