org.webjars.npm:toastr@2.1.4 vulnerabilities
-
latest version
2.1.4
-
first published
9 years ago
-
latest version published
6 years ago
-
licenses detected
- [2.1.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.webjars.npm:toastr package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
org.webjars.npm:toastr is a Javascript library for non-blocking notifications. jQuery is required. The goal is to create a simple core library that can be customized and extended Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to the missing sanitization of message and title which are not regarded as plain text by default. Note: The fix is not by default. As the documentation of the package mentions it; In case you want to escape How to fix Cross-site Scripting (XSS)? There is no fixed version for |
[0.0.0,)
|