5 matches found
@atlas.js/objection (>=0.1.0 <=3.0.0), @betaquick/fccc-db (=1.0.0) +152 more potentially affected by CVE-2021-3766 via objection (>=0.2.8 <=2.2.14)
objection NPM version =0.2.8, =0.1.0, =1.1.0, =0.8.1, =0.3.0, =0.1.0, =4.0.9, =2.0.4, =3.0.0, =0.1.0, =0.0.3, =0.2.2, =2.1.7, =3.1.10 - @lionhat/lib =1.0.0 and more Source cves: CVE-2021-3766 Source advisory: OSV:GHSA-R659-8XFP-J327...
CVE-2021-3766
objection.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution'...
CVE-2021-3766
objection.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution'...
CVE-2021-3766
CVE-2021-3766 : A prototype pollution vulnerability in objection.js (vincit/objection.js) allows improper modification of Object.prototype attributes. Affected versions prior to 2.2.16 are vulnerable; the issue is patched in 2.2.16. Impact details in connected records indicate high/critical sever...
CVE-2021-3766 Prototype Pollution in vincit/objection.js
objection.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution'...