CVE-2021-4264
CVE-2021-4264 affects LinkedIn Dust.js up to 2.x and is caused by prototype pollution in an unknown function, potentially exploitable remotely. The issue has a patch for 3.0.0 and a patch identifier (ddb6523832465d38c9d80189e9de60519ac307c3); upgrading the affectedDust.js component to 3.0.0+ is r...