VulnerableCode Package Details - pkg:npm/sweetalert2@11.3.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-2m95-znw7-z3dp Aliases: GHSA-457r-cqc8-9vj9 GMS-2022-7150	sweetalert2 v10.16.10 and above contains hidden functionality `sweetalert2` versions 10.16.10 and up until 11.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 10.0.0 - 10.16.9. ### Workaround Use a version 10.0.0 - 10.16.9 of the package until the maintainer releases a fix.	11.22.4 Affected by 0 other vulnerabilities.
VCID-e11n-n7xy-afg7 Aliases: GHSA-pg98-6v7f-2xfv GMS-2022-7152	sweetalert2 v9.17.4 and above contains hidden functionality `sweetalert2` versions 9.17.4 and up until 10.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 9.0.0 - 9.17.3. ### Workaround Users who are unable to update to the fixed version (11.22.4) can use package versions 9.0.0-9.17.3, as they do not contain the hidden functionality.	11.22.4 Affected by 0 other vulnerabilities.
VCID-vreg-t4ry-effe Aliases: GHSA-8jh9-wqpf-q52c GMS-2022-7151	sweetalert2 v8.19.1 and above contains hidden functionality `sweetalert2` versions 8.19.1 and up until 9.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions below 8.19.1. ### Workaround Users who are unable to update to the fixed version (11.22.4) can use package versions 8.19.0 and below, as they do not contain the hidden functionality.	11.22.4 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-2m95-znw7-z3dp
Aliases:
GHSA-457r-cqc8-9vj9
GMS-2022-7150

sweetalert2 v10.16.10 and above contains hidden functionality `sweetalert2` versions 10.16.10 and up until 11.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 10.0.0 - 10.16.9. ### Workaround Use a version 10.0.0 - 10.16.9 of the package until the maintainer releases a fix.

11.22.4
Affected by 0 other vulnerabilities.

VCID-e11n-n7xy-afg7
Aliases:
GHSA-pg98-6v7f-2xfv
GMS-2022-7152

sweetalert2 v9.17.4 and above contains hidden functionality `sweetalert2` versions 9.17.4 and up until 10.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 9.0.0 - 9.17.3. ### Workaround Users who are unable to update to the fixed version (11.22.4) can use package versions 9.0.0-9.17.3, as they do not contain the hidden functionality.

11.22.4
Affected by 0 other vulnerabilities.

VCID-vreg-t4ry-effe
Aliases:
GHSA-8jh9-wqpf-q52c
GMS-2022-7151

sweetalert2 v8.19.1 and above contains hidden functionality `sweetalert2` versions 8.19.1 and up until 9.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions below 8.19.1. ### Workaround Users who are unable to update to the fixed version (11.22.4) can use package versions 8.19.0 and below, as they do not contain the hidden functionality.

11.22.4
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-06T03:15:24.115520+00:00	GitLab Importer	Affected by	VCID-e11n-n7xy-afg7	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/sweetalert2/GHSA-pg98-6v7f-2xfv.yml	38.6.0
2026-06-06T03:15:17.463924+00:00	GitLab Importer	Affected by	VCID-vreg-t4ry-effe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/sweetalert2/GHSA-8jh9-wqpf-q52c.yml	38.6.0
2026-06-06T03:15:15.136716+00:00	GitLab Importer	Affected by	VCID-2m95-znw7-z3dp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/sweetalert2/GHSA-457r-cqc8-9vj9.yml	38.6.0