6 matches found
CVE-2021-20087
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype...
@molgenis-ui/core-ui (>=0.2.2 <=0.5.3), @molgenis/core-ui (=0.2.4) +12 more potentially affected by CVE-2021-20087 via jquery-deparam (>=0.1.0 <=0.5.3)
jquery-deparam NPM version =0.1.0, =0.2.2, =0.1.0, =0.0.1, =1.0.1, =1.2.1, =1.4.4, =1.0.0, =1.0.0, =1.2.1, =0.0.6, =0.3.8, =0.17.22 Source cves: CVE-2021-20087 Source advisory: OSV:GHSA-XG68-CHX2-253G...
CVE-2021-20087
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype...
CVE-2021-20087
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype...
CVE-2021-20087
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype...
CVE-2021-20087
The CVE-2021-20087 entry concerns jquery-deparam 0.5.1, where an improper control over Object.prototype attributes enables prototype pollution (injecting properties into Object.prototype). The vulnerability is caused by modifying prototype objects in a way that affects all objects created afterwa...