Show filters
346 Total Results
Displaying 311-320 of 346
Sort by:
Attacker Value
Unknown

CVE-2020-7719

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
Versions of package locutus before 2.0.12 are vulnerable to prototype Pollution via the php.strings.parse_str function.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7718

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
All versions of package gammautils are vulnerable to Prototype Pollution via the deepSet and deepMerge functions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7717

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
All versions of package dot-notes are vulnerable to Prototype Pollution via the create function.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7716

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
All versions of package deeps are vulnerable to Prototype Pollution via the set function.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7715

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7714

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
All versions of package confucious are vulnerable to Prototype Pollution via the set function.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7713

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
All versions of package arr-flatten-unflatten are vulnerable to Prototype Pollution via the constructor.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7708

Disclosure Date: August 18, 2020 (last updated February 22, 2025)
The package irrelon-path before 4.7.0; the package @irrelon/path before 4.7.0 are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7707

Disclosure Date: August 18, 2020 (last updated February 22, 2025)
The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7706

Disclosure Date: August 18, 2020 (last updated February 22, 2025)
The package connie-lang before 0.1.1 are vulnerable to Prototype Pollution in the configuration language library used by connie.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >