1.30.7
8 years ago
6 days ago
Known vulnerabilities in the fava package. This does not include vulnerabilities belonging to this package’s dependencies.
Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.
Fix for freeVulnerability | Vulnerable Version |
---|---|
fava is a web interface for the accounting tool Beancount Affected versions of this package are vulnerable to Cross-site Scripting (XSS) when handling tooltips in How to fix Cross-site Scripting (XSS)? Upgrade | [,1.22.3) |
fava is a web interface for the accounting tool Beancount Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the How to fix Cross-site Scripting (XSS)? Upgrade | [,1.22) |
fava is a web interface for the accounting tool Beancount Affected versions of this package are vulnerable to Cross-site Scripting (XSS) in the How to fix Cross-site Scripting (XSS)? Upgrade | [,1.22.2) |