6 matches found
Prototype Pollution in irrelon-path and @irrelon/path
The package irrelon-path before 4.7.0; the package @irrelon/path before 4.7.0 are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions...
GHSA-J7CG-H9V9-6VQP Prototype Pollution in irrelon-path and @irrelon/path
The package irrelon-path before 4.7.0; the package @irrelon/path before 4.7.0 are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions...
CVE-2020-7708
The package irrelon-path before 4.7.0; the package @irrelon/path before 4.7.0 are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions...
CVE-2020-7708
CVE-2020-7708 affects the Node.js packages named in the report: irrelon-path and @irrelon/path, specifically versions prior to 4.7.0. The vulnerability is a Prototype Pollution flaw exposed through the set, unSet, pushVal, and pullVal functions, allowing an attacker to modify object prototypes an...
Prototype Pollution
Overview @irrelon/path is an A powerful JSON path processor. Allows you to drill into and manipulate JSON objects with a simple dot-delimited path format e.g. "obj.name". Affected versions of this package are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions. POC...
Prototype Pollution
Overview irrelon-path is an A powerful JSON path processor. Allows you to drill into and manipulate JSON objects with a simple dot-delimited path format e.g. "obj.name". Affected versions of this package are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions. POC:...