Description
No description available.
Recommendation
Update the moment package to the latest compatible version. Followings are version details:
- Affected version(s): >= 2.18.0, < 2.29.4
- Patched version(s): 2.29.4
References
- GHSA-wc69-rhjr-hc9g
- huntr.dev
- lists.fedoraproject.org
- security.netapp.com
- lists.debian.org
- CVE-2022-31129
- CWE-1333
- CWE-400
- CAPEC-310
- OWASP 2021-A6
Related Issues
- Axios is vulnerable to DoS attack through lack of data size check - CVE-2025-58754
- Parse Server's custom object ID allows to acquire role privileges - CVE-2024-47183
- XSS in jQuery as used in Drupal, Backdrop CMS, and other products - CVE-2019-11358
- Bootstrap Vulnerable to Cross-Site Scripting (GHSA-9v3m-8fp8-mj99) - CVE-2019-8331
- Tags:
- npm
- moment
Anything's wrong? Let us know Last updated on November 29, 2023