highcharts-export-server@1.0.12 vulnerabilities

Convert Highcharts.JS charts into static image files.

  • latest version

    4.0.2

  • latest non vulnerable version

  • first published

    8 years ago

  • latest version published

    4 months ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the highcharts-export-server package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • L
    Information Exposure

    highcharts-export-server is a Convert Highcharts.JS charts to static image files.

    Affected versions of this package are vulnerable to Information Exposure. It allows for reading and outputting files served by other services on the internal network in which the export server is hosted. If the export server is exposed to the internet, this potentially allows a malicious user to gain read access to internal web-resources.The impact is limited to internal services that serve content via. HTTP(S), and requires the attacker to know internal hostnames/IP addresses.

    How to fix Information Exposure?

    Upgrade highcharts-export-server to version 2.1.0 or higher.

    <2.1.0