CVE-2020-7718 Prototype Pollution

All versions of package gammautils are vulnerable to Prototype Pollution via the deepSet and deepMerge functions...

CVE-2020-7718

CVE-2020-7718 affects the gammautils package. The connected sources confirm a Prototype Pollution vulnerability in gammautils through deepSet and deepMerge, impacting versions prior to 0.0.82 (listed as vulnerable up to 0.0.81 in GHSA/OSV/Veracode entries and PT-2020-19740). The vulnerability can...

PT-2020-19743 · Node.Js · Nodee-Utils

Name of the Vulnerable Software and Affected Versions: nodee-utils versions prior to 1.2.3 Description: The issue concerns Prototype Pollution via the deepSet function. This allows for potential manipulation of object properties, which can lead to various security issues. Recommendations: For...

PT-2020-19740 · Unknown · Gammautils

Name of the Vulnerable Software and Affected Versions: gammautils versions prior to 0.0.82 Description: The issue concerns Prototype Pollution via the deepSet and deepMerge functions. Recommendations: For versions prior to 0.0.82, update to version 0.0.82 or later to resolve the issue...

Prototype Pollution

Overview nodee-utils is a set of useful helpers Affected versions of this package are vulnerable to Prototype Pollution via the deepSet function. POC: const object = require'nodee-utils'; object.deepSet, 'proto.polluted', true; console.logpolluted; Details Prototype Pollution is a vulnerability...

Prototype Pollution

Overview gammautils is a Lots of utilities for Node.js Affected versions of this package are vulnerable to Prototype Pollution via the deepSet and deepMerge functions. POC: const gammautils = require'gammautils'; var payload = JSON.parse'""proto"":""polluted"":true'; gammautils.object.deepSet,...