@sveltejs/kit@2.2.2 vulnerabilities
SvelteKit is the fastest way to build Svelte apps
-
latest version
2.8.1
-
latest non vulnerable version
-
first published
4 years ago
-
latest version published
9 days ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the @sveltejs/kit package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@sveltejs/kit is a SvelteKit framework and CLI Affected versions of this package are vulnerable to Denial of Service (DoS) when sending a GET or HEAD request with a body, which is not supported by the HTTP specification. An attacker can cause the application to crash by sending such a request. How to fix Denial of Service (DoS)? Upgrade |
>=2.0.0 <2.4.3
|