log4js@2.3.4 vulnerabilities
Port of Log4js to work with node.
-
latest version
6.9.1
-
latest non vulnerable version
-
first published
14 years ago
-
latest version published
2 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the log4js package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
log4js is a Port of Log4js to work with node. Affected versions of this package are vulnerable to Information Exposure via the default file permissions for log files that are created by the How to fix Information Exposure? Upgrade |
<6.4.0
|