CVE-2024-39017

agreejs shared v0.0.1 was discovered to contain a prototype pollution via the function mergeInternalComponents. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

CVE-2024-39017

agreejs shared v0.0.1 was discovered to contain a prototype pollution via the function mergeInternalComponents. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

CVE-2024-39017

CVE-2024-39017 affects the agreejs shared library, version 0.0.1. The issue is a prototype pollution in the function mergeInternalComponents, enabling an attacker to inject arbitrary properties and potentially execute arbitrary code or cause a Denial of Service. Affected products are described co...

CVE-2024-39017

agreejs shared v0.0.1 was discovered to contain a prototype pollution via the function mergeInternalComponents. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

CVE-2024-39017

agreejs shared v0.0.1 was discovered to contain a prototype pollution via the function mergeInternalComponents. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

PT-2024-28327 · Agreejs · Agreejs

Name of the Vulnerable Software and Affected Versions: agreejs shared version 0.0.1 Description: The issue allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties through a prototype pollution vulnerability in the mergeInternalComponents...

@across-ui/example (>=0.0.1-alpha.4 <=0.0.4-alpha.5), @agreejs/api (>=0.0.1 <=3.2.14) +748 more potentially affected by CVE-2020-28500 via lodash-es (>=4.0.0 <=4.17.20)

lodash-es NPM version =4.0.0, =0.0.1-alpha.4, =0.0.1, =0.0.2, =3.2.1, =3.2.1, =3.2.1, =0.0.1, =3.2.1, =3.2.1, =0.1.0, =0.3.14, =0.4.63, =0.4.64 and more Source cves: CVE-2020-28500 Source advisory: OSV:GHSA-29MW-WPGM-HMR9...

@agreejs/cli (>=0.0.2 <=3.2.43), @agreejs/h5-runner (=3.2.1) +116 more potentially affected by CVE-2021-3804 via @tarojs/helper (>=2.2.0-beta.0 <=3.3.8)

@tarojs/helper NPM version =2.2.0-beta.0, =0.0.2, =3.2.1, =3.2.1, =3.2.1, =1.0.0-alpha.1, =1.0.0, =1.1.5, =0.0.5, =2.2.13, =2.2.14 and more Source cves: CVE-2021-3804 Source advisory: OSV:GHSA-468Q-V4JJ-485H...

@across-ui/example (>=0.0.1-alpha.4 <=0.0.4-alpha.5), @agreejs/api (>=0.0.1 <=3.2.14) +793 more potentially affected by CVE-2021-23337 via lodash-es (>=3.0.0 <=4.17.20)

lodash-es NPM version =3.0.0, =0.0.1-alpha.4, =0.0.1, =0.0.2, =3.2.1, =3.2.1, =3.2.1, =0.0.1, =3.2.1, =3.2.1, =0.1.0, =0.3.14, =0.4.63, =0.4.64 and more Source cves: CVE-2021-23337 Source advisory: OSV:GHSA-35JH-R3H4-6JHM...