npm package
@theia/plugin-ext
pkg:npm/%40theia/plugin-ext
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-41038 | — | < 1.18.0 | 1.18.0 | Nov 10, 2021 | In versions of the @theia/plugin-ext component of Eclipse Theia prior to 1.18.0, Webview contents can be hijacked via postMessage(). |
- CVE-2021-41038Nov 10, 2021affected < 1.18.0fixed 1.18.0
In versions of the @theia/plugin-ext component of Eclipse Theia prior to 1.18.0, Webview contents can be hijacked via postMessage().