Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-26132

Disclosure Date: June 10, 2023 (last updated February 25, 2025)
Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0