Prototype Override

Overview Affected versions of querystringify are vulnerable to Prototype Override. If a malicious string is inserted in the query string, it will set the tostring method of the object to the true boolean. Recommendation Upgrade to version 2.0.0 or later References - WhiteSource Advisory - Snyk...

Prototype Pollution

querystringify is vulnerable to prototype pollution. Lack of validation allows an attacker to submit a query string that overrides the toString or proto function. This could potentially allow the attacker to execute arbitrary code...

@afshin/custom404-extension (>=0.1.1 <=0.1.3), @apache-royale/cli (>=0.1.0 <=0.2.2) +517 more potentially affected by unknown CVE via querystringify (>=0.0.1 <=1.0.0)

querystringify NPM version =0.0.1, =0.1.1, =0.1.0, =1.0.0, =0.0.1, =0.1.0, =0.1.1, =0.5.0, =0.1.1, =0.1.0, =0.1.0, =0.1.0, =1.1.1, =2.0.0, =3.2.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-HXCM-V35H-MG2X...

GHSA-HXCM-V35H-MG2X Prototype Pollution in querystringify

A vulnerability was found in querystringify before 2.0.0. It's possible to override built-in properties of the resulting query string object if a malicious string is inserted in the query string...

Prototype Pollution in querystringify

A vulnerability was found in querystringify before 2.0.0. It's possible to override built-in properties of the resulting query string object if a malicious string is inserted in the query string...