2 matches found
CVE-2020-7723 Prototype Pollution
All versions of package promisehelpers are vulnerable to Prototype Pollution via the insert function...
CVE-2020-7723
CVE-2020-7723 affects the JavaScript package promisehelpers. All versions prior to 0.0.6 are vulnerable to prototype pollution via the insert function, enabling an attacker to inject properties into Object.prototype (e.g., through proto ). Documented impacts include potential denial of service an...