CVE-2019-18841

Published November 11th, 2019

View on NVD ↗

CVSS v3

7.3

HIGH

CVSS v2

7.5

HIGH

Affected

3

PROJECTS

Description

Chartkick.js 3.1.0 through 3.1.3, as used in the Chartkick gem before 3.3.0 for Ruby, allows prototype pollution.

Create beautiful JavaScript charts with one line of Ruby

RubyGems

40.1M

ankane/chartkick

Create beautiful JavaScript charts with one line of Ruby

GitHub

6.53K

ankane/chartkick.js

Create beautiful charts with one line of JavaScript

GitHub

1.24K