urlgrabber@3.10.2 vulnerabilities

A high-level cross-protocol url-grabber

Direct Vulnerabilities

Known vulnerabilities in the urlgrabber package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Directory Traversal

urlgrabber is a high-level cross-protocol url-grabber

Affected versions of this package are vulnerable to Directory Traversal via the path parameter.

How to fix Directory Traversal?

Upgrade urlgrabber to version 4.0.0 or higher.

[3.9.1,4.0.0)
  • M
Cross-site Scripting (XSS)

urlgrabber is a high-level cross-protocol url-grabber

Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to not sanitizing input.

How to fix Cross-site Scripting (XSS)?

Upgrade urlgrabber to version 4.0.0 or higher.

[3.9.1,4.0.0)