webpack@5.48.0 vulnerabilities

Packs ECMAScript/CommonJs/AMD modules for the browser. Allows you to split your codebase into multiple bundles, which can be loaded on demand. Supports loaders to preprocess files, i.e. json, jsx, es7, css, less, ... and your custom stuff.

Known vulnerabilities in the webpack package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Sandbox Bypass Affected versions of this package are vulnerable to Sandbox Bypass when `ImportParserPlugin.js` mishandles magic comments to allow cross-realm object access. An attacker who controls a property of an untrusted object can access the real global object. How to fix Sandbox Bypass? Upgrade `webpack` to version 5.76.0 or higher.	>=5.0.0-alpha.0 <5.76.0