Potential for Script Injectionsyntax-error
syntax-error prior to 1.1.1 are affected by a cross-site scripting vulnerability which may allow a malicious file to execute code when browserified.
Update to version 1.1.1 or later.
Have content suggestions? Send them to [email protected]
publishedAdvisory publishedJul 15th, 2014
reportedInitial report by Cal LeemingOct 17th, 2015