Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2020-28478 Vulnerability in npm package gsap

Description

This affects the package gsap before 3.6.0.

Remediation

References

https://github.com/greensock/GSAP/blob/master/src/gsap-core.js%23L147

https://snyk.io/vuln/SNYK-JS-GSAP-1054614

Related Vulnerabilities

CVE-2022-25979 Vulnerability in maven package org.webjars.npm:jsuites

CVE-2021-23356 Vulnerability in npm package kill-process-by-name

CVE-2020-7707 Vulnerability in maven package org.webjars.npm:property-expr

CVE-2022-24823 Vulnerability in maven package io.netty:netty-common

CVE-2018-5673 Vulnerability in maven package org.dojotoolkit:dojo

Severity

Critical

Tags

Broken Link Exploit Third Party Advisory NVD-CWE-noinfo