Vulnerable JS Library

Docs > Alerts

Details
Alert ID	10003
Alert Type	Passive
Status	release
Risk	Medium
CWE	1395
WASC
Technologies Targeted	All
Tags	CWE-1395 OWASP_2017_A09 OWASP_2021_A06
More Info	Scan Rule Help

Summary

The identified library appears to be vulnerable.

Solution

Upgrade to the latest version of the affected library.

Other Info

The identified library ExampleLibrary.js, version 13.3.7 is vulnerable.

References

https://owasp.org/Top10/A06_2021-Vulnerable_and_Outdated_Components/

Code

org/zaproxy/addon/retire/RetireScanRule.java