Lucene search
K

6 matches found

Node.js
Node.js
added 2021/05/06 5:30 p.m.62 views

Prototype Pollution in property-expr

Overview property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function. Recommendation Upgrade to version 2.0.3 or later References - CVE - GitHub Advisory...

7.5CVSS5.1AI score0.03376EPSS
Exploits1Affected Software1
NVD
NVD
added 2020/08/18 2:15 p.m.32 views

CVE-2020-7707

The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function...

9.8CVSS9.5AI score0.03376EPSS
Exploits1References3
OSV
OSV
added 2020/08/18 2:15 p.m.14 views

CVE-2020-7707

The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function...

9.8CVSS6.7AI score
Exploits0References3
CVE
CVE
added 2020/08/18 1:40 p.m.67 views

CVE-2020-7707

CVE-2020-7707 affects the Node.js property-expr module (versions before 2.0.3). Root cause is a prototype pollution flaw in the setter function, enabling remote attackers to execute arbitrary code. Affected: property-expr

9.8CVSS9.4AI score0.03376EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/08/18 1:40 p.m.38 views

CVE-2020-7707 Prototype Pollution

The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function...

9.8CVSS9.5AI score0.03376EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2020/08/17 2:48 p.m.6 views

svelte-forms-lib (>=1.1.1 <=1.3.2) potentially affected by CVE-2020-7707 via property-expr (=2.0.2)

property-expr NPM version =2.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on property-expr and may be impacted: - svelte-forms-lib =1.1.1, =1.3.2 Source cves: CVE-2020-7707 Source advisory: SNYK:JS-PROPERTYEXPR-598800...

9.8CVSS7.2AI score0.03376EPSS
Exploits1
Rows per page
Query Builder