Homepage

urlgrabber@3.9.1 vulnerabilities

A high-level cross-protocol url-grabber

  • latest version

    4.1.0

  • latest non vulnerable version

    4.1.0

  • first published

    13 years ago

  • latest version published

    5 years ago

  • licenses detected

  • View urlgrabber package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the urlgrabber package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Directory Traversal

    urlgrabber is a high-level cross-protocol url-grabber

    Affected versions of this package are vulnerable to Directory Traversal via the path parameter.

    How to fix Directory Traversal?

    Upgrade urlgrabber to version 4.0.0 or higher.

    [3.9.1,4.0.0)
    • M
    Cross-site Scripting (XSS)

    urlgrabber is a high-level cross-protocol url-grabber

    Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to not sanitizing input.

    How to fix Cross-site Scripting (XSS)?

    Upgrade urlgrabber to version 4.0.0 or higher.

    [3.9.1,4.0.0)
    Go back to all versions of this package