3 matches found
101 (>=0.2.0 <=1.6.2), 101-es6 (=0.8.0) +306 more potentially affected by CVE-2021-25943 via 101 (>=1.2.0 <=1.6.3)
101 NPM version =1.2.0, =0.2.0, =0.1.0, =0.0.0, =0.0.2, =2.13.1, =0.0.1, =0.0.2, =0.1.0, =1.0.0, =1.1.2, =0.0.1, =1.0.0, =0.0.48, =0.0.62 and more Source cves: CVE-2021-25943 Source advisory: OSV:GHSA-CWCX-RXGC-CMW3...
CVE-2021-25943
The CVE-2021-25943 entry concerns a prototype pollution flaw in the 101 package, affecting versions 1.0.0 through 1.6.3. The root cause is improper object manipulation that allows prototype pollution, enabling a denial of service and potentially remote code execution. Publicly documented referenc...
CVE-2021-25943
Prototype pollution vulnerability in '101' versions 1.0.0 through 1.6.3 allows an attacker to cause a denial of service and may lead to remote code execution...