jsuites@3.6.0 vulnerabilities

jSuites is a collection of lightweight common required javascript plugins and web components. It is composed of fully responsive vanilla plugins to help you bring the best user experience to your projects, independent of the platform.

  • latest version

    5.8.1

  • latest non vulnerable version

  • first published

    5 years ago

  • latest version published

    1 days ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the jsuites package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Cross-site Scripting (XSS)

    jsuites is a jSuites is a collection of lightweight common required javascript plugins and web components. It is composed of fully responsive vanilla plugins to help you bring the best user experience to your projects, independent of the platform.

    Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to improper user-input sanitization in the Editor() function.

    How to fix Cross-site Scripting (XSS)?

    Upgrade jsuites to version 5.0.1 or higher.

    <5.0.1
    • M
    Cross-site Scripting (XSS)

    jsuites is a jSuites is a collection of lightweight common required javascript plugins and web components. It is composed of fully responsive vanilla plugins to help you bring the best user experience to your projects, independent of the platform.

    Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the HTML editor.

    Note: this requires the victim to paste a malicious payload into the editor.

    How to fix Cross-site Scripting (XSS)?

    Upgrade jsuites to version 4.9.11 or higher.

    <4.9.11