chartist@0.7.4 vulnerabilities

Simple, responsive charts

  • latest version

    1.3.0

  • first published

    10 years ago

  • latest version published

    2 years ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the chartist package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Prototype Pollution

    chartist is a Simple, responsive charts

    Affected versions of this package are vulnerable to Prototype Pollution via the extend function. An attacker can alter the behavior of all objects inheriting from the affected prototype by passing arguments to the vulnerable function crafted with the built-in property __proto__.

    How to fix Prototype Pollution?

    There is no fixed version for chartist.

    *