Description
Mirador users less than v3.0.0 (alpha-rc) versions that have an unpatched jQuery. When adopters update jQuery they will find some of Mirador functionality to be broken.
Recommendation
Update the mirador package to the latest compatible version. Followings are version details:
- Affected version(s): <= 2.7.2
- Patched version(s): 3.0.0-alpha.0
References
Related Issues
- Cross Site Scripting vulnerability in store2 - CVE-2024-57556
- Bootstrap Cross-site Scripting vulnerability - CVE-2016-10735
- protobufjs Prototype Pollution vulnerability - CVE-2023-36665
- chromedriver Command Injection vulnerability - CVE-2023-26156
- Tags:
- npm
- mirador
Anything's wrong? Let us know Last updated on January 09, 2023