Skip to content

[Snyk] Security upgrade izimodal from 1.5.1 to 1.6.0#1

Open
salmanclever wants to merge 1 commit into
developfrom
snyk-fix-29d9e9a1bc2e8731aa0713c6aceefe91
Open

[Snyk] Security upgrade izimodal from 1.5.1 to 1.6.0#1
salmanclever wants to merge 1 commit into
developfrom
snyk-fix-29d9e9a1bc2e8731aa0713c6aceefe91

Conversation

@salmanclever

Copy link
Copy Markdown
Owner

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 601/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.6
Prototype Pollution
SNYK-JS-JQUERY-174006
No Proof of Concept
medium severity 636/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 6.3
Cross-site Scripting (XSS)
SNYK-JS-JQUERY-565129
No Proof of Concept
medium severity 646/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 6.5
Cross-site Scripting (XSS)
SNYK-JS-JQUERY-567880
No Proof of Concept
medium severity 484/1000
Why? Has a fix available, CVSS 5.4
Cross-site Scripting (XSS)
npm:jquery:20150627
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: izimodal The new version differs by 26 commits.
  • f8dabd8 Update to release
  • 679c48b Merge pull request #197 from dbfeatdb/master
  • f473bd2 Merge branch 'master' into master
  • 2ad8bb2 Update to release
  • 318293c Update to release
  • b512bbc update package.json
  • 44797fd Merge pull request #184 from CBke/master
  • d618b27 Merge pull request #200 from RiFi2k/define-useragent
  • e034960 Merge pull request #230 from SomeBdyElse/patch-1
  • ec6f2d5 Merge pull request #241 from marcelodolza/dependabot/npm_and_yarn/jquery-3.5.0
  • e4b8a6e Merge pull request #233 from nimdeveloper/patch-1
  • 5cb3ea2 Bump jquery from 2.2.4 to 3.5.0
  • d24b4a6 Update iziModal.css
  • 07c2a62 Allow special characters in modal element ids
  • 7641ca5 Update README.md
  • 260aaf6 Define userAgent variable
  • 097107e Update iziModal.min.js
  • b02c210 Update iziModal.js
  • 13375ea add transitionIn: bounceInLeft, bounceInRight and transitionOut: bounceOutLeft, bounceOutRight
  • 72b5d6b Update v1.6.0
  • 54f6f1b Update v1.6.0
  • 3b13d00 Merge pull request #160 from macroplant/modalHash-fix
  • 6ddacd9 Merge branch 'master' into modalHash-fix
  • 5019178 Merge pull request #161 from qathom/master

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic


Learn how to fix vulnerabilities with free interactive lessons:

🦉 Cross-site Scripting (XSS)
🦉 Cross-site Scripting (XSS)
🦉 Cross-site Scripting (XSS)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants