By the Year
In 2023 there have been 0 vulnerabilities in Facebook React . React did not have any published security vulnerabilities last year.
It may take a day or so for new React vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Facebook React Security Vulnerabilities
React applications which rendered to HTML using the ReactDOMServer API were not escaping user-supplied attribute names at render-time
6.1 - Medium
- December 31, 2018
React applications which rendered to HTML using the ReactDOMServer API were not escaping user-supplied attribute names at render-time. That lack of escaping could lead to a cross-site scripting vulnerability. This issue affected minor releases 16.0.x, 16.1.x, 16.2.x, 16.3.x, and 16.4.x. It was fixed in 16.0.1, 16.1.2, 16.2.1, 16.3.3, and 16.4.2.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Facebook React or by Facebook? Click the Watch button to subscribe.