Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories: GSA_kwCzR0hTQS1tZjIyLTkycG0tbThwOM0u0w

Cross site scripting in @awsui/components-react

Impact

Components could potentially allow cross-site scripting (XSS) in certain circumstances. These components could render content without adequate neutralization.

Patches

Fixed in 3.0.367.

Permalink: https://github.com/advisories/GHSA-mf22-92pm-m8p8
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1tZjIyLTkycG0tbThwOM0u0w
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: about 2 years ago
Updated: over 1 year ago

CVSS Score: 8.8
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Identifiers: GHSA-mf22-92pm-m8p8, CVE-2022-24709
References:

Repository: https://github.com/aws/awsui-documentation
Blast Radius: 16.2

Affected Packages

npm:@awsui/components-react

Dependent packages: 12
Dependent repositories: 70
Downloads: 9,444 last month
Affected Version Ranges: < 3.0.367
Fixed in: 3.0.367
All affected versions: 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.10, 3.0.11, 3.0.12, 3.0.13, 3.0.14, 3.0.15, 3.0.16, 3.0.17, 3.0.18, 3.0.19, 3.0.20, 3.0.21, 3.0.22, 3.0.23, 3.0.24, 3.0.25, 3.0.26, 3.0.27, 3.0.28, 3.0.29, 3.0.30, 3.0.31, 3.0.32, 3.0.33, 3.0.34, 3.0.35, 3.0.36, 3.0.37, 3.0.38, 3.0.39, 3.0.40, 3.0.41, 3.0.42, 3.0.43, 3.0.44, 3.0.45, 3.0.46, 3.0.47, 3.0.48, 3.0.49, 3.0.50, 3.0.51, 3.0.52, 3.0.53, 3.0.54, 3.0.55, 3.0.56, 3.0.57, 3.0.58, 3.0.60, 3.0.61, 3.0.62, 3.0.63, 3.0.65, 3.0.66, 3.0.67, 3.0.68, 3.0.69, 3.0.70, 3.0.71, 3.0.72, 3.0.73, 3.0.74, 3.0.75, 3.0.76, 3.0.77, 3.0.78, 3.0.79, 3.0.80, 3.0.81, 3.0.82, 3.0.83, 3.0.84, 3.0.85, 3.0.86, 3.0.87, 3.0.88, 3.0.89, 3.0.90, 3.0.91, 3.0.92, 3.0.93, 3.0.94, 3.0.95, 3.0.96, 3.0.97, 3.0.98, 3.0.99, 3.0.100, 3.0.101, 3.0.102, 3.0.103, 3.0.104, 3.0.105, 3.0.106, 3.0.107, 3.0.108, 3.0.109, 3.0.110, 3.0.111, 3.0.112, 3.0.113, 3.0.114, 3.0.115, 3.0.116, 3.0.117, 3.0.118, 3.0.119, 3.0.120, 3.0.121, 3.0.122, 3.0.123, 3.0.124, 3.0.125, 3.0.126, 3.0.127, 3.0.128, 3.0.129, 3.0.130, 3.0.131, 3.0.132, 3.0.133, 3.0.134, 3.0.135, 3.0.136, 3.0.137, 3.0.138, 3.0.139, 3.0.140, 3.0.141, 3.0.142, 3.0.143, 3.0.144, 3.0.145, 3.0.146, 3.0.147, 3.0.148, 3.0.149, 3.0.150, 3.0.151, 3.0.152, 3.0.153, 3.0.154, 3.0.155, 3.0.156, 3.0.157, 3.0.158, 3.0.159, 3.0.160, 3.0.161, 3.0.162, 3.0.163, 3.0.164, 3.0.165, 3.0.166, 3.0.167, 3.0.168, 3.0.169, 3.0.170, 3.0.171, 3.0.172, 3.0.173, 3.0.174, 3.0.175, 3.0.176, 3.0.177, 3.0.178, 3.0.179, 3.0.180, 3.0.181, 3.0.182, 3.0.183, 3.0.184, 3.0.185, 3.0.186, 3.0.187, 3.0.188, 3.0.189, 3.0.190, 3.0.191, 3.0.192, 3.0.193, 3.0.194, 3.0.195, 3.0.196, 3.0.197, 3.0.198, 3.0.199, 3.0.200, 3.0.201, 3.0.202, 3.0.203, 3.0.204, 3.0.205, 3.0.206, 3.0.207, 3.0.208, 3.0.209, 3.0.210, 3.0.211, 3.0.212, 3.0.213, 3.0.214, 3.0.215, 3.0.216, 3.0.217, 3.0.218, 3.0.219, 3.0.220, 3.0.221, 3.0.222, 3.0.223, 3.0.224, 3.0.225, 3.0.226, 3.0.227, 3.0.228, 3.0.229, 3.0.230, 3.0.231, 3.0.232, 3.0.233, 3.0.234, 3.0.235, 3.0.236, 3.0.237, 3.0.238, 3.0.239, 3.0.240, 3.0.241, 3.0.242, 3.0.243, 3.0.244, 3.0.245, 3.0.246, 3.0.247, 3.0.248, 3.0.249, 3.0.250, 3.0.251, 3.0.252, 3.0.253, 3.0.254, 3.0.255, 3.0.256, 3.0.257, 3.0.258, 3.0.259, 3.0.260, 3.0.261, 3.0.262, 3.0.263, 3.0.264, 3.0.265, 3.0.266, 3.0.267, 3.0.268, 3.0.269, 3.0.270, 3.0.271, 3.0.272, 3.0.273, 3.0.274, 3.0.275, 3.0.276, 3.0.277, 3.0.278, 3.0.279, 3.0.280, 3.0.281, 3.0.282, 3.0.283, 3.0.284, 3.0.285, 3.0.286, 3.0.287, 3.0.288, 3.0.289, 3.0.290, 3.0.291, 3.0.292, 3.0.293, 3.0.294, 3.0.295, 3.0.296, 3.0.297, 3.0.298, 3.0.299, 3.0.300, 3.0.301, 3.0.302, 3.0.303, 3.0.304, 3.0.305, 3.0.306, 3.0.307, 3.0.308, 3.0.309, 3.0.310, 3.0.311, 3.0.312, 3.0.313, 3.0.314, 3.0.315, 3.0.316, 3.0.317, 3.0.318, 3.0.319, 3.0.320, 3.0.321, 3.0.322, 3.0.323, 3.0.324, 3.0.325, 3.0.326, 3.0.327, 3.0.328, 3.0.329, 3.0.330, 3.0.331, 3.0.332, 3.0.333, 3.0.334, 3.0.335, 3.0.336, 3.0.337, 3.0.338, 3.0.339, 3.0.340, 3.0.341, 3.0.342, 3.0.343, 3.0.344, 3.0.345, 3.0.346, 3.0.347, 3.0.348, 3.0.349, 3.0.350, 3.0.351, 3.0.352, 3.0.353, 3.0.354, 3.0.355, 3.0.356, 3.0.357, 3.0.358, 3.0.359, 3.0.360, 3.0.361, 3.0.362, 3.0.363, 3.0.364, 3.0.365, 3.0.366
All unaffected versions: 3.0.367, 3.0.368, 3.0.369, 3.0.370, 3.0.371, 3.0.372, 3.0.373, 3.0.374, 3.0.375, 3.0.376, 3.0.377, 3.0.378, 3.0.379, 3.0.380, 3.0.381, 3.0.382, 3.0.383, 3.0.384, 3.0.385, 3.0.386, 3.0.387, 3.0.388, 3.0.389, 3.0.390, 3.0.391, 3.0.392, 3.0.393, 3.0.394, 3.0.395, 3.0.396, 3.0.397, 3.0.398, 3.0.399, 3.0.400, 3.0.401, 3.0.402, 3.0.403, 3.0.404, 3.0.405, 3.0.406, 3.0.407, 3.0.408, 3.0.409, 3.0.410, 3.0.411, 3.0.412, 3.0.413, 3.0.414, 3.0.415, 3.0.416, 3.0.417, 3.0.418, 3.0.419, 3.0.420, 3.0.421, 3.0.422, 3.0.423, 3.0.424, 3.0.425, 3.0.426, 3.0.427, 3.0.428, 3.0.429, 3.0.430, 3.0.431, 3.0.432, 3.0.433, 3.0.434, 3.0.435, 3.0.436, 3.0.437, 3.0.438, 3.0.439, 3.0.440, 3.0.441, 3.0.442, 3.0.443, 3.0.444, 3.0.445, 3.0.446, 3.0.447, 3.0.448, 3.0.449, 3.0.450, 3.0.451, 3.0.452, 3.0.453, 3.0.454, 3.0.455, 3.0.456, 3.0.457, 3.0.458, 3.0.459, 3.0.460, 3.0.461, 3.0.462, 3.0.463, 3.0.464, 3.0.465, 3.0.466, 3.0.467, 3.0.468, 3.0.469, 3.0.470, 3.0.471, 3.0.472, 3.0.473, 3.0.474, 3.0.475, 3.0.476, 3.0.477, 3.0.478, 3.0.479, 3.0.480, 3.0.481, 3.0.482, 3.0.483, 3.0.484, 3.0.485, 3.0.486, 3.0.487, 3.0.488, 3.0.489, 3.0.490, 3.0.491, 3.0.492, 3.0.493, 3.0.494, 3.0.495, 3.0.496, 3.0.497, 3.0.498, 3.0.499, 3.0.500, 3.0.501, 3.0.502, 3.0.503, 3.0.504, 3.0.505, 3.0.506, 3.0.507, 3.0.508, 3.0.509, 3.0.510, 3.0.511, 3.0.512, 3.0.513, 3.0.514, 3.0.515, 3.0.516, 3.0.517, 3.0.518, 3.0.519, 3.0.520, 3.0.521, 3.0.522, 3.0.523, 3.0.524, 3.0.525, 3.0.526, 3.0.527, 3.0.528, 3.0.529, 3.0.530, 3.0.531, 3.0.532, 3.0.533, 3.0.534, 3.0.535, 3.0.536, 3.0.537, 3.0.538, 3.0.539, 3.0.540, 3.0.541, 3.0.542, 3.0.543, 3.0.544, 3.0.545, 3.0.546, 3.0.547, 3.0.548, 3.0.549, 3.0.550, 3.0.551, 3.0.552, 3.0.553, 3.0.554, 3.0.555, 3.0.556, 3.0.557, 3.0.558, 3.0.559, 3.0.560, 3.0.561, 3.0.562, 3.0.563, 3.0.564, 3.0.565, 3.0.566, 3.0.567, 3.0.568, 3.0.569, 3.0.570, 3.0.571, 3.0.572, 3.0.573, 3.0.574, 3.0.575, 3.0.576, 3.0.577, 3.0.578, 3.0.579, 3.0.580, 3.0.581, 3.0.582, 3.0.583, 3.0.584, 3.0.585, 3.0.586, 3.0.587, 3.0.588, 3.0.589, 3.0.590, 3.0.591, 3.0.592, 3.0.593, 3.0.594, 3.0.595, 3.0.596, 3.0.597, 3.0.598, 3.0.599, 3.0.600, 3.0.601, 3.0.602, 3.0.603, 3.0.604, 3.0.605, 3.0.606, 3.0.607, 3.0.608, 3.0.609, 3.0.610, 3.0.611, 3.0.612, 3.0.613, 3.0.614, 3.0.615, 3.0.616, 3.0.617, 3.0.618, 3.0.619, 3.0.620, 3.0.621, 3.0.622, 3.0.623, 3.0.624, 3.0.625, 3.0.626, 3.0.627, 3.0.628, 3.0.629, 3.0.630, 3.0.631, 3.0.632, 3.0.633, 3.0.634, 3.0.635, 3.0.636, 3.0.637, 3.0.638, 3.0.639, 3.0.640, 3.0.641, 3.0.642, 3.0.643, 3.0.644, 3.0.645, 3.0.646, 3.0.647, 3.0.648, 3.0.649, 3.0.650, 3.0.651, 3.0.652, 3.0.653, 3.0.654, 3.0.655, 3.0.656, 3.0.657, 3.0.658, 3.0.659, 3.0.660, 3.0.661, 3.0.662, 3.0.663, 3.0.664, 3.0.665, 3.0.666, 3.0.667, 3.0.668, 3.0.669, 3.0.670, 3.0.671, 3.0.672, 3.0.673, 3.0.674, 3.0.675, 3.0.676, 3.0.677, 3.0.678, 3.0.679, 3.0.680, 3.0.681, 3.0.682, 3.0.683, 3.0.684, 3.0.685, 3.0.686, 3.0.687, 3.0.688, 3.0.689, 3.0.690, 3.0.691, 3.0.692, 3.0.693, 3.0.694, 3.0.695, 3.0.696, 3.0.697, 3.0.698, 3.0.699, 3.0.700, 3.0.701, 3.0.702, 3.0.703, 3.0.704, 3.0.705, 3.0.706, 3.0.707, 3.0.708, 3.0.709, 3.0.710, 3.0.711, 3.0.712, 3.0.713, 3.0.714, 3.0.715, 3.0.716, 3.0.717, 3.0.718, 3.0.719, 3.0.720, 3.0.721, 3.0.722, 3.0.723, 3.0.724, 3.0.725, 3.0.726, 3.0.727, 3.0.728, 3.0.729, 3.0.730, 3.0.731, 3.0.732, 3.0.733, 3.0.734, 3.0.735, 3.0.736, 3.0.737, 3.0.738, 3.0.739, 3.0.740, 3.0.741, 3.0.742, 3.0.743, 3.0.744, 3.0.745, 3.0.746, 3.0.747, 3.0.748, 3.0.749, 3.0.750, 3.0.751, 3.0.752, 3.0.753, 3.0.754, 3.0.755, 3.0.756, 3.0.757, 3.0.758, 3.0.759, 3.0.760, 3.0.761, 3.0.762, 3.0.763, 3.0.764, 3.0.765, 3.0.766, 3.0.767, 3.0.768, 3.0.769, 3.0.770, 3.0.771, 3.0.772, 3.0.773, 3.0.774, 3.0.775, 3.0.776, 3.0.777, 3.0.778, 3.0.779, 3.0.780, 3.0.781, 3.0.782, 3.0.783, 3.0.784, 3.0.785, 3.0.786, 3.0.787, 3.0.788, 3.0.789, 3.0.790, 3.0.791, 3.0.792, 3.0.793, 3.0.794, 3.0.795, 3.0.796, 3.0.797, 3.0.798, 3.0.799, 3.0.800, 3.0.801, 3.0.802, 3.0.803, 3.0.804, 3.0.805, 3.0.806, 3.0.807, 3.0.808, 3.0.809, 3.0.810, 3.0.811, 3.0.812, 3.0.813, 3.0.814, 3.0.815, 3.0.816, 3.0.817, 3.0.818, 3.0.819, 3.0.820, 3.0.821, 3.0.822, 3.0.823, 3.0.824, 3.0.825, 3.0.826, 3.0.827, 3.0.828, 3.0.829, 3.0.830, 3.0.831, 3.0.832, 3.0.833, 3.0.834, 3.0.835, 3.0.836, 3.0.837, 3.0.838, 3.0.839, 3.0.840, 3.0.841, 3.0.842, 3.0.843, 3.0.844, 3.0.845, 3.0.846, 3.0.847, 3.0.848, 3.0.849, 3.0.850, 3.0.851, 3.0.852, 3.0.853, 3.0.854, 3.0.855, 3.0.856, 3.0.857, 3.0.858, 3.0.859, 3.0.860, 3.0.861, 3.0.862, 3.0.863, 3.0.864, 3.0.865, 3.0.866, 3.0.867, 3.0.868, 3.0.869, 3.0.870, 3.0.871, 3.0.872, 3.0.873, 3.0.874, 3.0.875, 3.0.876, 3.0.877, 3.0.878, 3.0.879, 3.0.880, 3.0.881, 3.0.882, 3.0.883, 3.0.884, 3.0.885, 3.0.886, 3.0.887, 3.0.888, 3.0.889, 3.0.890, 3.0.891, 3.0.892, 3.0.893, 3.0.894, 3.0.895, 3.0.896, 3.0.897, 3.0.898, 3.0.899, 3.0.900, 3.0.901, 3.0.902, 3.0.903, 3.0.904, 3.0.905, 3.0.906, 3.0.907, 3.0.908, 3.0.909, 3.0.910, 3.0.911, 3.0.912, 3.0.913, 3.0.914, 3.0.915, 3.0.916, 3.0.917, 3.0.918, 3.0.919, 3.0.920, 3.0.921, 3.0.922, 3.0.923, 3.0.924, 3.0.925, 3.0.926, 3.0.927, 3.0.928, 3.0.929, 3.0.930, 3.0.931, 3.0.932, 3.0.933, 3.0.934, 3.0.935, 3.0.936, 3.0.937, 3.0.938, 3.0.939, 3.0.940, 3.0.941, 3.0.942, 3.0.943, 3.0.944, 3.0.945, 3.0.946, 3.0.947, 3.0.948, 3.0.949, 3.0.950, 3.0.951, 3.0.952, 3.0.953, 3.0.954, 3.0.955, 3.0.956, 3.0.957, 3.0.958, 3.0.959, 3.0.960, 3.0.961, 3.0.962, 3.0.963, 3.0.964, 3.0.965, 3.0.966, 3.0.967, 3.0.968, 3.0.969, 3.0.970, 3.0.971, 3.0.972, 3.0.973, 3.0.974, 3.0.975, 3.0.976, 3.0.977, 3.0.978, 3.0.979, 3.0.980, 3.0.981, 3.0.982, 3.0.983, 3.0.984, 3.0.985, 3.0.986, 3.0.987, 3.0.988, 3.0.989, 3.0.990, 3.0.991, 3.0.992, 3.0.993, 3.0.994, 3.0.995, 3.0.996, 3.0.997, 3.0.998, 3.0.999, 3.0.1000, 3.0.1001, 3.0.1002, 3.0.1003, 3.0.1004, 3.0.1005, 3.0.1006, 3.0.1007, 3.0.1008, 3.0.1009, 3.0.1010, 3.0.1011, 3.0.1012, 3.0.1013, 3.0.1014, 3.0.1015, 3.0.1016, 3.0.1017, 3.0.1018, 3.0.1019, 3.0.1020, 3.0.1021, 3.0.1022, 3.0.1023, 3.0.1024, 3.0.1025, 3.0.1026, 3.0.1027, 3.0.1028, 3.0.1029, 3.0.1030, 3.0.1031, 3.0.1032, 3.0.1033, 3.0.1034, 3.0.1035, 3.0.1036, 3.0.1037, 3.0.1038, 3.0.1039, 3.0.1040, 3.0.1041, 3.0.1042, 3.0.1043, 3.0.1044, 3.0.1045, 3.0.1046, 3.0.1047, 3.0.1048, 3.0.1049, 3.0.1050, 3.0.1051, 3.0.1052, 3.0.1053, 3.0.1054, 3.0.1055, 3.0.1056, 3.0.1057, 3.0.1058, 3.0.1059, 3.0.1060, 3.0.1061, 3.0.1062, 3.0.1063, 3.0.1064, 3.0.1065, 3.0.1066, 3.0.1067, 3.0.1068, 3.0.1069, 3.0.1070, 3.0.1071, 3.0.1072, 3.0.1073, 3.0.1074, 3.0.1075, 3.0.1076, 3.0.1077, 3.0.1078, 3.0.1079, 3.0.1080, 3.0.1081, 3.0.1082, 3.0.1083, 3.0.1084, 3.0.1085, 3.0.1086, 3.0.1087, 3.0.1088, 3.0.1089, 3.0.1090, 3.0.1091, 3.0.1092, 3.0.1093, 3.0.1094, 3.0.1095, 3.0.1096, 3.0.1097, 3.0.1098, 3.0.1099, 3.0.1100, 3.0.1101, 3.0.1102, 3.0.1103, 3.0.1104, 3.0.1105, 3.0.1106, 3.0.1107, 3.0.1108, 3.0.1109, 3.0.1110, 3.0.1111, 3.0.1112, 3.0.1113, 3.0.1114, 3.0.1115, 3.0.1116, 3.0.1117, 3.0.1118, 3.0.1119, 3.0.1120, 3.0.1121, 3.0.1122, 3.0.1123, 3.0.1124, 3.0.1125, 3.0.1126, 3.0.1127, 3.0.1128, 3.0.1129, 3.0.1130, 3.0.1131, 3.0.1132, 3.0.1133, 3.0.1134, 3.0.1135, 3.0.1136, 3.0.1137, 3.0.1138, 3.0.1139, 3.0.1140, 3.0.1141, 3.0.1142, 3.0.1143, 3.0.1144, 3.0.1145, 3.0.1146, 3.0.1147, 3.0.1148, 3.0.1149, 3.0.1150, 3.0.1151, 3.0.1152, 3.0.1153, 3.0.1154, 3.0.1155, 3.0.1156, 3.0.1157, 3.0.1158, 3.0.1159, 3.0.1160, 3.0.1161, 3.0.1162, 3.0.1163, 3.0.1164, 3.0.1165, 3.0.1166, 3.0.1167, 3.0.1168, 3.0.1169, 3.0.1170, 3.0.1171, 3.0.1172, 3.0.1173, 3.0.1174, 3.0.1175, 3.0.1176, 3.0.1177, 3.0.1178, 3.0.1179, 3.0.1180, 3.0.1181