5.0.39
8 years ago
6 hours ago
Known vulnerabilities in the scratch-vm package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
scratch-vm is a Virtual Machine for Scratch 3.0 Affected versions of this package are vulnerable to Improper Input Validation. When loading an SB3, it is determined whether a block is part of an extension by inspecting its "extended" opcode (for example, How to fix Improper Input Validation? Upgrade | >=0.1.0-prerelease.1524239808 <0.2.0-prerelease.20200714185213 |