Description

One or more packages that are used in your web application are affected by known vulnerabilities. Please consult the details section for more information about each affected package.

Remediation

It's recommended to update the vulnerable packages to the latest version (if a fix exists). If a fix does not exist, you may want to suggest changes that address the vulnerability to the package maintainer or remove the package from your dependency tree.

References

Software composition analysis (SCA)

Related Vulnerabilities

Sqlite NULL Pointer Dereference Vulnerability (CVE-2020-13435)

Beego Framework Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-27117)

Atlassian Confluence Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6668)

WordPress Plugin WP Bannerize 'ajax_clickcounter.php' SQL Injection (2.8.6)

WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (3.5.3)

Severity

Low

Classification

CWE-1104

Tags

Missing Update Known Vulnerabilities