CVE-2020-7639

Published
View on NVD ↗
CVSS v3
5.3
MEDIUM
CVSS v2
5
MEDIUM
Affected
1
PROJECT

Description

eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.

eivindfjeldstad/dot
eivindfjeldstad/dot
Get and set object properties with dot notation
GitHubGitHub
2