Actions
Bug #94583
closed
Upgrade packages chart.js, codemirror, ckeditor4
Start date:
2021-07-19
Due date:
% Done:
100%
Estimated time:
TYPO3 Version:
9
PHP Version:
Tags:
Complexity:
Is Regression:
Sprint Focus:
Description
Upgrade JavaScript packages chart.js, codemirror and ckeditor4 addressing known and disclosed vulnerabilities.
- chart.js: Prototype Pollution
https://app.snyk.io/vuln/SNYK-JS-CHARTJS-1018716 - codemirror: Regular Expression DoS (ReDoS)
https://app.snyk.io/vuln/SNYK-JS-CODEMIRROR-1016937 - ckeditor4: Cross-Site Scripting
https://app.snyk.io/vuln/SNYK-JS-CKEDITOR4-1303090
Updated by 
Updated by 
Updated by
Actions