@ardier16/node-lb (>=1.0.0 <=2.0.0), @economist/backstopjs (>=0.0.1 <=0.0.3) +139 more potentially affected by CVE-2020-7679 via casperjs (>=1.1.0-beta3 <=1.1.4)

casperjs NPM version =1.1.0-beta3, =1.0.0, =0.0.1, =0.1.0, =1.2.0, =0.4.0, =0.1.0, =0.0.2, =3.40.4-ez-bin.7, =0.0.1, =0.0.2, =0.0.3 - autocallinjs =1.0.0 and more Source cves: CVE-2020-7679 Source advisory: SNYK:JS-CASPERJS-572803...

PT-2020-19702 · Casperjs Team · Casperjs

Name of the Vulnerable Software and Affected Versions: casperjs versions affected versions not specified Description: The issue concerns a Prototype Pollution vulnerability via the mergeObjects utility function in casperjs, a navigation scripting and testing utility for PhantomJS and SlimerJS. Th...