8 matches found
CVE-2024-36578
akbr update 1.0.0 is vulnerable to Prototype Pollution via update/index.js...
GHSA-MJ4P-GMHR-92G3 @akbr/update Prototype Pollution
akbr update 1.0.0 is vulnerable to Prototype Pollution via update/index.js...
CVE-2024-36578
akbr update 1.0.0 is vulnerable to Prototype Pollution via update/index.js...
CVE-2024-36578
CVE-2024-36578 affects the npm package akbr/update, version 1.0.0, via Prototype Pollution in the file update/index.js . The connected sources describe an impact where manipulating an object’s prototype could alter application behavior and potentially allow arbitrary code execution. No explicit p...
CVE-2024-36578
akbr update 1.0.0 is vulnerable to Prototype Pollution via update/index.js...
CVE-2024-36578
akbr update 1.0.0 is vulnerable to Prototype Pollution via update/index.js...
@akbr/update Prototype Pollution
akbr update 1.0.0 is vulnerable to Prototype Pollution via update/index.js...
PT-2024-27077 · Unknown · Akbr Update
Name of the Vulnerable Software and Affected Versions: akbr update version 1.0.0 Description: The issue is related to Prototype Pollution, which occurs via the update/index.js file. Recommendations: For akbr update version 1.0.0, consider restricting access to the update/index.js file as a...