3 matches found
CVE-2022-37265
Prototype pollution vulnerability in stealjs steal 2.2.4 via the alias variable in babel.js...
CVE-2022-37265
Prototype pollution vulnerability in stealjs steal 2.2.4 via the alias variable in babel.js...
CVE-2022-37265
CVE-2022-37265 : A prototype pollution vulnerability affects stealjs steal version 2.2.4 via the alias variable in babel.js. Multiple connected sources (GHSA, Veracode, NVD, Red Hat) describe that an attacker can inject properties into existing object prototypes (e.g., proto , constructor, protot...