3 matches found
bmoor-comm (>=0.0.1 <=0.0.3) potentially affected by CVE-2021-23558 via bmoor (>=0.0.5 <=0.0.7)
bmoor NPM version =0.0.5, =0.0.1, =0.0.3 Source cves: CVE-2021-23558 Source advisory: OSV:GHSA-4M8H-H59M-M34J...
CVE-2021-23558
The CVE-2021-23558 entry affects the JavaScript library bmoor prior to 0.10.1, where the set function allows Prototype Pollution due to missing input sanitization. The vulnerability is linked to an incomplete fix referenced by CVE-2020-7736. Practical impact is Prototype Pollution risk in objects...
bmoor-comm (>=0.0.1 <=0.0.3) potentially affected by CVE-2020-7736 +1 more via bmoor (>=0.0.5 <=0.0.7)
bmoor NPM version =0.0.5, =0.0.1, =0.0.3 Source cves: CVE-2020-7736, CVE-2021-23558 Source advisory: SNYK:JS-BMOOR-2342622...