@ladle/react@0.0.0-next-52b4eec vulnerabilities
Ladle is an environment to develop, test, and share your React components faster.
-
latest version
4.1.2
-
latest non vulnerable version
-
first published
4 years ago
-
latest version published
a month ago
Direct Vulnerabilities
Known vulnerabilities in the @ladle/react package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@ladle/react is a Ladle is an environment to develop, test, and share your React components faster. Affected versions of this package are vulnerable to Directory Traversal due to improper validation of user-supplied input. An attacker on the same network can read files accessible to the user by crafting malicious GET requests. How to fix Directory Traversal? Upgrade |
<2.5.2
|