2 matches found
CVE-2020-28503
Copy-props before 2.0.5 is vulnerable to Prototype Pollution via its main functionality. The issue arises from unsafe merge of objects, allowing an attacker to inject properties into Object.prototype (e.g., via proto ), with potential impact including denial of service and, in some descriptions, ...
CVE-2020-28503 Prototype Pollution
The package copy-props before 2.0.5 are vulnerable to Prototype Pollution via the main functionality...