CVE-2020-7641

Published July 17th, 2022

View on NVD ↗

CVSS v3

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

This affects all versions of package grunt-util-property. The function call could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.

mikaelkaron/grunt-util-property

Grunt util for getting and setting properties

GitHub