highlight.run@4.5.4 vulnerabilities

Open source, fullstack monitoring. Capture frontend errors, record server side logs, and visualize what broke with session replay.

Direct Vulnerabilities

Known vulnerabilities in the highlight.run package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Information Exposure

highlight.run is an Open source, fullstack monitoring. Capture frontend errors, record server side logs, and visualize what broke with session replay.

Affected versions of this package are vulnerable to Information Exposure via html inputs of type password which are recorded in plaintext when converted to text inputs.

How to fix Information Exposure?

Upgrade highlight.run to version 6.0.0 or higher.

<6.0.0