eivindfjeldstad/dot

Releases4

Frequency1 year 11 months

Last Release over 6 years ago

Stars2

Get and set object properties with dot notation

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-7639 ↗	Apr 6, 2020Monday, 6 April 2020, 13:15	5.3 MEDIUM	5 MEDIUM
eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.