Description

One or more packages that are used in your web application are affected by known vulnerabilities. Please consult the details section for more information about each affected package.

Remediation

It's recommended to update the vulnerable packages to the latest version (if a fix exists). If a fix does not exist, you may want to suggest changes that address the vulnerability to the package maintainer or remove the package from your dependency tree.

References

Software composition analysis (SCA)

Related Vulnerabilities

WordPress Plugin Acobot Live Chat & Contact Form Multiple Vulnerabilities (2.0)

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1822)

IBM RTC Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-4946)

WordPress 5.3.x Multiple Vulnerabilities (5.3 - 5.3.15)

Apache HTTP Server Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2019-0220)

Severity

Low

Classification

CWE-1104

Tags

Missing Update Known Vulnerabilities