3 matches found
CVE-2020-7713
All versions of package arr-flatten-unflatten are vulnerable to Prototype Pollution via the constructor...
CVE-2020-7713
CVE-2020-7713 affects the npm package arr-flatten-unflatten . All versions up to and including 1.1.4 are vulnerable to prototype pollution via the constructor . Public advisories (GHSA, OSV, Snyk, Veracode) confirm the issue and provide a PoC demonstrating pollution of Object.prototype. There is ...
CVE-2020-7713 Prototype Pollution
All versions of package arr-flatten-unflatten are vulnerable to Prototype Pollution via the constructor...