node-gettext vulnerable to Prototype Pollution

All versions of the package node-gettext are vulnerable to Prototype Pollution via the addTranslations function in gettext.js due to improper user input sanitization...

CVE-2024-21528

A flaw was found in node-gettext. All versions of the package node-gettext are vulnerable to Prototype Pollution via the addTranslations function in gettext.js due to improper user input sanitization. Mitigation Mitigation for this issue is either not available or the currently available options ...

CVE-2024-21528

All versions of the package node-gettext are vulnerable to Prototype Pollution via the addTranslations function in gettext.js due to improper user input sanitization...

CVE-2024-21528

All versions of the package node-gettext are vulnerable to Prototype Pollution via the addTranslations function in gettext.js due to improper user input sanitization...

CVE-2024-21528

CVE-2024-21528 affects the Node package node-gettext. The vulnerability is a Prototype Pollution flaw in the addTranslations() function of gettext.js caused by improper input sanitization. Affected versions are all reported versions; explicit exploit details or in-the-wild activity are not provid...

PT-2024-18942 · Unknown · Node-Gettext

Name of the Vulnerable Software and Affected Versions: node-gettext versions all Description: The issue is related to Prototype Pollution via the addTranslations function in gettext.js due to improper user input sanitization. This affects the node-gettext package. Recommendations: For all version...

Prototype Pollution

node-gettext is vulnerable to Prototype Pollution. The vulnerability is due to improper user input sanitization in the addTranslations function, allowing attackers to inject or manipulate properties in object prototypes...