3 matches found
CVE-2022-37266
Summary: CVE-2022-37266 is a prototype pollution vulnerability in StealJS (steal) 2.2.4, affecting the babel.js extension where the attack occurs via the key variable in babel.js. The issue is rooted in the function extend and allows modification of object prototypes (e.g., proto , constructor, p...
CVE-2022-37266
Prototype pollution vulnerability in function extend in babel.js in stealjs steal 2.2.4 via the key variable in babel.js...
CVE-2022-37266
Prototype pollution vulnerability in function extend in babel.js in stealjs steal 2.2.4 via the key variable in babel.js...