3.2.7.dev18
10 years ago
11 days ago
Known vulnerabilities in the girder package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable due to Insecure Defaults. The default Girder server would bind to 0.0.0.0 by default instead of localhost. How to fix Insecure Default? Upgrade | [,2.5.0) |
Affected versions of this package are vulnerable to Cross-site Scripting (XSS). | [,2.2.0) |