An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS1xcTZoLTVnNmotcTNjbc4AAwBN
sweetalert2 v11.4.9 and above contains hidden functionality
sweetalert2 versions 11.4.9 and above are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 11.0.0 - 11.4.8.
Use a version 11.0.0 - 11.4.8 of the package until the maintainer releases a fix.Permalink: https://github.com/advisories/GHSA-qq6h-5g6j-q3cm
Source: GitHub Advisory Database
Published: 6 months ago
Updated: 5 months ago
npm:sweetalert2Versions: >= 11.4.9
No known fixed version