Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-26132

Disclosure Date: June 10, 2023 (last updated October 08, 2023)
Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0