@ladle/react@0.16.0 vulnerabilities
Ladle is an environment to develop, test, and share your React components faster.
-
latest version
4.1.2
-
latest non vulnerable version
-
first published
4 years ago
-
latest version published
a month ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the @ladle/react package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@ladle/react is a Ladle is an environment to develop, test, and share your React components faster. Affected versions of this package are vulnerable to Directory Traversal due to improper validation of user-supplied input. An attacker on the same network can read files accessible to the user by crafting malicious GET requests. How to fix Directory Traversal? Upgrade |
<2.5.2
|