4 matches found
Prototype Pollution
dustjs-linkedin is vulnerable to prototype pollution. The vulnerability exists because prototype attributes are not properly validated which allows an attacker to inject malicious characteristics to add new properties to a JavaScript application object prototype, overwriting or contaminating the...
2gis-maps (>=2.2.4 <=3.7.0), @27works/posto (=2.0.2) +281 more potentially affected by CVE-2021-4264 via dustjs-linkedin (>=0.4.0 <=2.7.5)
dustjs-linkedin NPM version =0.4.0, =2.2.4, =0.0.1, =0.2.0, =1.0.0, =0.0.1, =0.1.9, =0.1.8, =1.0.0, =1.0.27 and more Source cves: CVE-2021-4264 Source advisory: OSV:GHSA-C6RP-WRP9-QR4Q...
MAL-2022-2618 Malicious code in dustjs-linkedin-helpers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 873bc4ced308a324a98fca026bd90202448ab5890c03760bfddfee7251a7211e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dustjs-linkedin-helpers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 873bc4ced308a324a98fca026bd90202448ab5890c03760bfddfee7251a7211e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...