b-heilman/bmoor

Releases83

Frequency1 month 3 days

Last Release about 4 years ago

Stars2

Javascript system for bootstrapping, autoloading, and defining functionality

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-23558 ↗	Jan 28, 2022Friday, 28 January 2022, 22:15	7.3 HIGH	7.5 HIGH
The package bmoor before 0.10.1 are vulnerable to Prototype Pollution due to missing sanitization in set function. Note: This vulnerability derives from an incomplete fix in [CVE-2020-7736](https://security.snyk.io/vuln/SNYK-JS-BMOOR-598664)
CVE-2020-7736 ↗	Oct 2, 2020Friday, 2 October 2020, 10:15	7.3 HIGH	7.5 HIGH
The package bmoor before 0.8.12 are vulnerable to Prototype Pollution via the set function.