crypto-js 3.3.0 is vulnerable and please update to 4.2.0+

Question

UgurGumushan opened this issue 5 months ago · comments

crypto-js 3.3.0 is vulnerable and please update to 4.2.0+
GHSA-xwcq-pm8m-c4vf

GaelCO · Answer 1 · Thu Jan 18 2024 21:21:07 GMT+0800 (China Standard Time)

Hi @UgurGumushan . This vulnerability was already fixed by 6.7.2 version