Описание
AdonisJS is a TypeScript-first web framework. Prior to versions 10.1.3 and 11.0.0-next.9, a prototype pollution vulnerability in AdonisJS multipart form-data parsing may allow a remote attacker to manipulate object prototypes at runtime. This issue has been patched in versions 10.1.3 and 11.0.0-next.9.
EPSS
Процентиль: 10%
0.00036
Низкий
7.2 High
CVSS3
Дефекты
CWE-1321
Связанные уязвимости
CVSS3: 7.2
github
2 дня назад
AdonisJS multipart body parsing has Prototype Pollution issue
EPSS
Процентиль: 10%
0.00036
Низкий
7.2 High
CVSS3
Дефекты
CWE-1321