AVG-2841 log
| Package | web-ext |
| Status | Fixed |
| Severity | Medium |
| Type | insufficient validation |
| Affected | 7.6.0-1 |
| Fixed | 7.6.1-1 |
| Current | 7.11.0-1 [extra] |
| Ticket | None |
| Created | Thu Apr 13 18:19:41 2023 |
| Advisory | Pending |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2023-0842 | Medium | Yes | Insufficient validation | xml2js version 0.4.23 allows an external attacker to edit or add new properties to an object. This is possible because the application does not properly... |
| References |
|---|
https://github.com/mozilla/web-ext/issues/2716. |