aheckmann/mquery

Releases75

Frequency2 months 2 days

Last Release 7 months ago

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-35149 ↗	Dec 11, 2020Friday, 11 December 2020, 19:15	5.3 MEDIUM	5 MEDIUM
lib/utils.js in mquery before 3.2.3 allows a pollution attack because a special property (e.g., __proto__) can be copied during a merge or clone operation.