4 matches found
CVE-2021-23561
creationtimestamp| type| source ---|---|--- 2021-12-10 22:25:25+00:00| seen| https://t.me/cibsecurity/33765...
CVE-2021-23561
All versions of package comb are vulnerable to Prototype Pollution via the deepMerge function...
CVE-2021-23561
CVE-2021-23561 affects the npm package comb, where the deepMerge() function enables Prototype Pollution. The vulnerability arises from unsafe recursive merge and path-based property assignment, allowing an attacker to modify Object.prototype properties (e.g., proto , constructor, prototype). Docu...
CVE-2021-23561 Prototype Pollution
All versions of package comb are vulnerable to Prototype Pollution via the deepMerge function...