Description
XSS vulnerability. All versions under 0.3.7 are impacted
Recommendation
Update the gifplayer package to the latest compatible version. Followings are version details:
- Affected version(s): < 0.3.7
- Patched version(s): 0.3.7
References
Related Issues
- Denial of Service in jquery - CVE-2016-10707
- Prototype pollution in gsap - CVE-2020-28478
- pym.js CSRF Vulnerability - CVE-2018-1000086
- Cross-site Scripting in vmd - CVE-2021-33041
- Tags:
- npm
- gifplayer
Anything's wrong? Let us know Last updated on March 31, 2025