phenggeler / juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
http://owasp-juice.shop
MIT License
0 stars 0 forks source link

Security Alert - Package: sanitize-html; Severity: MODERATE; #10

Open phenggeler opened 3 years ago

phenggeler commented 3 years ago
    A new vulnerability has been reported by Dependabot. The criticality of this vulnerability is MODERATE.

    MODERATE vulnerabilities have an SLA of 30 days according to our policy.

    Affected package: sanitize-html
    Ecosystem: NPM
    Affected version range: <= 1.11.1

    Fixed Version: 1.11.4
    Created Date = September 09, 2021

    Severity: MODERATE

    ***Additional Context***
    https://github.com/phenggeler/juice-shop/security/dependabot?q=is%3Aopen+sort%3Anewest