Prototype pollution vulnerability in function convertLater in npm-convert.js in stealjs steal 2.2.4 via the requestedVersion variable in npm-convert.js.
9.8CVSS
9.4AI Score
0.005EPSS
Prototype pollution vulnerability in function convertLater in npm-convert.js in stealjs steal 2.2.4 via the packageName variable in npm-convert.js.
9.8CVSS
9.3AI Score
0.003EPSS
A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the string variable in babel.js.
7.5CVSS
7.4AI Score
0.001EPSS
A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the input variable in main.js.
7.5CVSS
7.4AI Score
0.001EPSS
A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the source and sourceWithComments variable in main.js.
7.5CVSS
7.4AI Score
0.001EPSS
Prototype pollution vulnerability in stealjs steal 2.2.4 via the optionName variable in main.js.
9.8CVSS
9.3AI Score
0.002EPSS
Prototype pollution vulnerability in stealjs steal 2.2.4 via the alias variable in babel.js.
9.8CVSS
9.4AI Score
0.002EPSS
Prototype pollution vulnerability in function extend in babel.js in stealjs steal 2.2.4 via the key variable in babel.js.
9.8CVSS
9.4AI Score
0.002EPSS