1.200.1
4 years ago
1 days ago
Known vulnerabilities in the posthog-js package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
posthog-js is a Posthog-js allows you to automatically capture usage and send events to PostHog. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the JS and API URLs. This allows a low-privileged user to execute scripts. How to fix Cross-site Scripting (XSS)? Upgrade | <1.57.2 |