janl/node-jsonpointer

Releases13

Frequency10 months 4 weeks

Last Release almost 4 years ago

Stars198

JSON Pointer (RFC6901) implementation for Node.js

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-23807 ↗	Nov 3, 2021Wednesday, 3 November 2021, 18:15	5.6 MEDIUM	7.5 HIGH
This affects the package jsonpointer before 5.0.0. A type confusion vulnerability can lead to a bypass of a previous Prototype Pollution fix when the pointer components are arrays.