phenggeler / juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
http://owasp-juice.shop
MIT License
0 stars 0 forks source link

Security Alert - Package: sanitize-html; Severity: MODERATE; #25

Open phenggeler opened 3 years ago

phenggeler commented 3 years ago
    A new vulnerability has been reported by Dependabot. The criticality of this vulnerability is MODERATE.

    MODERATE vulnerabilities have an SLA of 60 days according to our policy.

    Affected package: sanitize-html
    Ecosystem: NPM
    Affected version range: < 1.4.3

    Fixed Version: 1.4.3
    Created Date = September 09, 2021

    ***Additional Context***
    https://github.com/phenggeler/juice-shop/security/dependabot?q=is%3Aopen+sort%3Anewest