swagger-stats icon indicating copy to clipboard operation
swagger-stats copied to clipboard

Published 20 hours ago verified publisher icon slanatech

Vulnerability with send <0.19

Open pserena-iterpro opened this issue 1 year ago • 0 comments
trafficstars

One of my dependencies uses swagger-stats, and lately one of his dependencies has been marked as vulnerable. Here the details:

send  <0.19.0
send vulnerable to template injection that can lead to XSS - https://github.com/advisories/GHSA-m6fv-jmcg-4jfg

pserena-iterpro avatar Nov 21 '24 11:11 pserena-iterpro