backbone@0.1.1 vulnerabilities
Give your JS App some Backbone with Models, Views, Collections, and Events.
-
latest version
1.6.0
-
latest non vulnerable version
-
first published
13 years ago
-
latest version published
3 months ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the backbone package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
backbone is a module that adds in structure to a JavaScript heavy application through key-value pairs and custom events connecting to your RESTful API through JSON
Backbone has a security control in its This exposes a Cross-site Scripting (XSS) vulnerability if users can influence the input provided. How to fix Cross-site Scripting (XSS)? Upgrade to version |
<0.1.2
|
backbone is a module that adds in structure to a JavaScript heavy application through key-value pairs and custom events connecting to your RESTful API through JSON
Backbone has a security control in its This exposes a Cross-site Scripting (XSS) vulnerability if users can influence the input provided. How to fix Cross-site Scripting (XSS)? Upgrade to version |
<0.1.2
|
Potential XSS Exploit With User-Supplied Data in Model#escape In applications that use the escape function, a specially-crafted payload could execute arbitrary JavaScript in the context of the current domain ("XSS"). This vulnerability has not been assigned CVE identifier. |
<0.5.0
|