4.19.0
7 years ago
1 days ago
Known vulnerabilities in the @wordpress/url package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
@wordpress/url is a WordPress URL utilities. Affected versions of this package are vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes through the block editor. An attacker can manipulate the object prototype, leading to potential unauthorized access or modification of data by injecting malicious scripts into the web application. How to fix Improperly Controlled Modification of Dynamically-Determined Object Attributes? Upgrade | <3.7.1 |