@awsui/components-react/.../components-react@3.0.278 vulnerabilities

  • latest version

    3.0.1398

  • latest non vulnerable version

  • first published

    3 years ago

  • latest version published

    20 hours ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the @awsui/components-react package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Improper Input Validation

    @awsui/components-react is a AWS UI is a collection of React components that help create intuitive, responsive, and accessible user experiences for web applications. It is developed by [Amazon Web Services (AWS)](h

    Affected versions of this package are vulnerable to Improper Input Validation via multiple components which have been found to not properly neutralize user input and may allow for javascript injection.

    How to fix Improper Input Validation?

    Upgrade @awsui/components-react to version 3.0.367 or higher.

    <3.0.367