postcss-inline-base64@2.2.1 vulnerabilities
PostCSS plugin for encode the file to base64
-
latest version
7.3.1
-
latest non vulnerable version
-
first published
8 years ago
-
latest version published
a year ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the postcss-inline-base64 package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
postcss-inline-base64 is a PostCSS plugin for encode the file to base64 Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to using an inefficient pattern ( Disclosure Timeline Feb 13th, 2018 - Initial Disclosure to package owner Feb 14th, 2018 - Initial Response from package owner Feb 16th, 2018 - Fix issued, not yet published to npm. Feb 18th, 2018 - Vulnerability published How to fix Regular Expression Denial of Service (ReDoS)? Upgrade |
<3.0.0
|