7 matches found
CVE-2023-2972
Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3...
CVE-2023-2972
creationtimestamp| type| source ---|---|--- 2023-05-30 14:18:31+00:00| seen| https://t.me/cibsecurity/64779 2025-01-10 19:07:02+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1212...
128981semzub (=1.0.1), 2ra-ui (>=0.0.0 <=1.3.0) +2875 more potentially affected by CVE-2023-2972 via @antfu/utils (>=0.1.7 <=0.7.2)
@antfu/utils NPM version =0.1.7, =0.0.0, =0.1.5, =0.1.0, =0.0.2, =1.0.0-beta.0, =1.0.0, =0.0.1-alpha.0, =0.0.1-alpha.1, =0.0.3-alpha.2, =0.0.1-alpha.4, =1.1.60, =1.1.0, =1.3.21 and more Source cves: CVE-2023-2972 Source advisory: OSV:GHSA-P2FH-2H23-6GRG...
CVE-2023-2972
Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3...
CVE-2023-2972 Prototype Pollution in antfu/utils
Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3...
CVE-2023-2972
CVE-2023-2972 describes a prototype pollution vulnerability in the GitHub repository antfu/utils prior to 0.7.3. The issue is confirmed across multiple sources (NVD/OSV/GHSA) as a prototype contamination in the utility’s codebase. Reported impact in the CVE data indicates high-level risk, but the...
CVE-2023-2972 Prototype Pollution in antfu/utils
Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3...