Search for packages
| purl | pkg:npm/sweetalert2@9.17.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-e11n-n7xy-afg7
Aliases: GHSA-pg98-6v7f-2xfv GMS-2022-7152 |
sweetalert2 v9.17.4 and above contains hidden functionality `sweetalert2` versions 9.17.4 and up until 10.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 9.0.0 - 9.17.3. ### Workaround Users who are unable to update to the fixed version (11.22.4) can use package versions 9.0.0-9.17.3, as they do not contain the hidden functionality. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-05T21:38:41.513882+00:00 | GHSA Importer | Affected by | VCID-e11n-n7xy-afg7 | https://github.com/advisories/GHSA-pg98-6v7f-2xfv | 38.6.0 |
| 2026-06-05T17:13:28.792054+00:00 | GitLab Importer | Affected by | VCID-e11n-n7xy-afg7 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/sweetalert2/GHSA-pg98-6v7f-2xfv.yml | 38.6.0 |