npm package
dijit
pkg:npm/dijit
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-4051 | — | < 1.11.11 | 1.11.11 | Jun 15, 2020 | In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 and less than 1.12.9, and greater than or equal to 1.13.0 and less than 1.13.8, and greater than or equal to 1.14.0 and less than 1.14.7, and greater than or equal to 1.15.0 and less than 1.15.4, and greater th | ||
| CVE-2018-6561 | — | < 1.13.1 | 1.13.1 | Feb 2, 2018 | dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element. |
- CVE-2020-4051Jun 15, 2020affected < 1.11.11fixed 1.11.11
In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 and less than 1.12.9, and greater than or equal to 1.13.0 and less than 1.13.8, and greater than or equal to 1.14.0 and less than 1.14.7, and greater than or equal to 1.15.0 and less than 1.15.4, and greater th
- CVE-2018-6561Feb 2, 2018affected < 1.13.1fixed 1.13.1
dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.