Описание
Prototype Pollution in undefsafe
undefsafe before 2.0.3 is vulnerable to Prototype Pollution. The 'a' function could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.
Пакеты
Наименование
undefsafe
npm
Затронутые версииВерсия исправления
< 2.0.3
2.0.3
Связанные уязвимости
CVSS3: 6.3
nvd
почти 6 лет назад
undefsafe before 2.0.3 is vulnerable to Prototype Pollution. The 'a' function could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.