2 matches found
CVE-2024-38997
adolphdudu ratio-swiper v0.0.2 was discovered to contain a prototype pollution via the function extendDefaults. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...
CVE-2024-38997
CVE-2024-38997 affects the adolph_dudu ratio-swiper package (v0.0.2). The issue is a prototype pollution vulnerability in the extendDefaults function, enabling attackers to inject arbitrary properties and potentially execute arbitrary code or trigger a Denial of Service (DoS). Public details cove...