mercurius@6.2.0 vulnerabilities

Fastify GraphQL adapter with subscription support

  • latest version

    15.1.0

  • latest non vulnerable version

  • first published

    9 years ago

  • latest version published

    1 months ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the mercurius package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Uncaught Exception

    mercurius is a GraphQL adapter for Fastify

    Affected versions of this package are vulnerable to Uncaught Exception when sending a malformed packet over WebSocket to /graphql.

    How to fix Uncaught Exception?

    Upgrade mercurius to version 8.13.2, 11.5.0 or higher.

    <8.13.2>=9.0.0 <11.5.0