Closed ocofaigh closed 2 years ago
nth-check 2.0.0 has a vulnerability in it (CVE-2021-3803)
nth-check 2.0.0
nth-check 2.0.0 is a dependency of css-select 4.1.3 which is a dependency of node-html-parser: https://github.com/taoqf/node-html-parser/blob/1465d5d42bd14ea8b43f593d8d2e3ee22b9d6952/package.json#L51
css-select 4.1.3
node-html-parser
Solution: Update to latest version of css-select in package.json. Right now that is 4.2.1 (This uses nth-check 2.0.1 which is not vulnerable)
css-select
4.2.1
Created a PR: https://github.com/taoqf/node-html-parser/pull/182
Thanks! Merged.
nth-check 2.0.0
has a vulnerability in it (CVE-2021-3803)nth-check 2.0.0
is a dependency ofcss-select 4.1.3
which is a dependency ofnode-html-parser
: https://github.com/taoqf/node-html-parser/blob/1465d5d42bd14ea8b43f593d8d2e3ee22b9d6952/package.json#L51Solution: Update to latest version of
css-select
in package.json. Right now that is4.2.1
(This uses nth-check 2.0.1 which is not vulnerable)