Lucene search

K

Prototype Pollution

🗓️ 20 Jun 2019 14:39:51Reported by Snyk Security TeamType 
nodejs
 nodejs
🔗 www.npmjs.com👁 17 Views

Versions of `mixin-deep` prior to 2.0.1 or 1.3.2 are vulnerable to Prototype Pollution. The `mixinDeep` function fails to validate which Object properties it updates, allowing attackers to modify the prototype of Object, causing the addition or modification of an existing property on all objects

Show more
Related
Detection
Vulners
Node
OR
mixin-deep_projectmixin-deepRange2.0.02.0.1node.js

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
20 Jun 2019 14:51Current
3.5Low risk
Vulners AI Score3.5
EPSS0.007
17
.json
Report