7 matches found
CVE-2022-1295
Prototype Pollution in GitHub repository alvarotrigo/fullpage.js prior to 4.0.2...
@chrismou/ember-cli-fullpage-js (>=1.0.0 <=1.0.4), @fullpage/angular-fullpage (>=0.0.1 <=0.0.16) +28 more potentially affected by CVE-2022-1295 via fullpage.js (>=2.7.9 <=3.1.2)
fullpage.js NPM version =2.7.9, =1.0.0, =0.0.1, =0.0.1, =1.0.1, =0.0.14, =1.0.15, =0.2.1, =1.0.0, =1.0.7, =0.1.16, =1.0.0, =1.0.0, =1.0.2 and more Source cves: CVE-2022-1295 Source advisory: OSV:GHSA-VPGW-FFH3-648H...
CVE-2022-1295
Prototype Pollution in GitHub repository alvarotrigo/fullpage.js prior to 4.0.2...
CVE-2022-1295
Prototype Pollution in GitHub repository alvarotrigo/fullpage.js prior to 4.0.2...
CVE-2022-1295 Prototype Pollution in alvarotrigo/fullpage.js
Prototype Pollution in GitHub repository alvarotrigo/fullpage.js prior to 4.0.2...
CVE-2022-1295 Prototype Pollution in alvarotrigo/fullpage.js
Prototype Pollution in GitHub repository alvarotrigo/fullpage.js prior to 4.0.2...
CVE-2022-1295
Prototype Pollution in fullpage.js (CVE-2022-1295) affects the library prior to 4.0.2, via the internal deepExtend utility (window.fp_utils) enabling pollution of Object prototypes. Multiple sources (GHSA, OSV, NVD/nvd, Red Hat, Huntr) confirm the issue and describe the impact as potentially enab...