@awsui/components-react@3.0.316 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the @awsui/components-react package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Improper Input Validation

@awsui/components-react is a AWS UI is a collection of React components that help create intuitive, responsive, and accessible user experiences for web applications. It is developed by [Amazon Web Services (AWS)](h

Affected versions of this package are vulnerable to Improper Input Validation via multiple components which have been found to not properly neutralize user input and may allow for javascript injection.

How to fix Improper Input Validation?

Upgrade @awsui/components-react to version 3.0.367 or higher.