3 matches found
CVE-2020-7616
express-mock-middleware through 0.0.6 is vulnerable to Prototype Pollution. Exported functions by the package can be tricked into adding or modifying properties of the Object.prototype. Exploitation of this vulnerability requires creation of a new directory where an attack code can be placed whic...
CVE-2020-7616
express-mock-middleware through 0.0.6 is vulnerable to Prototype Pollution. Exported functions by the package can be tricked into adding or modifying properties of the Object.prototype. Exploitation of this vulnerability requires creation of a new directory where an attack code can be placed whic...
CVE-2020-7616
The CVE-2020-7616 entry concerns express-mock-middleware up to version 0.0.6. Affected component: exported functions of the package that can be manipulated to pollute Object.prototype (prototype pollution). Root cause: exploitation requires placing attack code in a newly created directory so that...