8 matches found
EUVD-2021-2604
Malware in sbrugna...
GHSA-WJPC-CGVW-XX23 Prototype Pollution in sey
All versions of package sey are vulnerable to Prototype Pollution via the deepmerge function...
Prototype Pollution in sey
All versions of package sey are vulnerable to Prototype Pollution via the deepmerge function...
CVE-2021-23663
All versions of package sey are vulnerable to Prototype Pollution via the deepmerge function...
CVE-2021-23663 Prototype Pollution
All versions of package sey are vulnerable to Prototype Pollution via the deepmerge function...
CVE-2021-23663
CVE-2021-23663 affects the JavaScript package sey across all versions, with prototype pollution via deepmerge(). The attackable component is the deepmerge() function, enabling property injection into Object.prototype and potential DoS or remote code execution. The connected sources confirm all ve...
Eserozvataf Sey 代码问题漏洞
Eserozvataf Sey is a simple JavaScript bundler with declarative and simple configuration. A code issue vulnerability exists in Eserozvataf Sey, which arises from the product's susceptibility to prototype contamination by the deepmerge function. The following products and versions are affected:...
Prototype Pollution
Overview sey is a Simple JavaScript build tool with declarative and easy configuration Affected versions of this package are vulnerable to Prototype Pollution via the deepmerge function. PoC // Create the following PoC file: // PoC.js var deepmerge = require"sey/lib/utils/deepmerge.js" var obj =...