Potential for Script Injection

2014-07-15T17:33:48
ID NODEJS:37
Type nodejs
Reporter Cal Leeming
Modified 2018-05-08T14:27:02

Description

Overview

Versions of syntax-error prior to 1.1.1 are affected by a cross-site scripting vulnerability which may allow a malicious file to execute code when browserified.

Recommendation

Update to version 1.1.1 or later.

References

Browserify 4.2.1 Update