Dot-object Project - Dot-object CVE - CVE Search - CVE Details

Filtered by vendor Dot-object Project Subscribe

Filtered by product Dot-object

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-10793	1 Dot-object Project	1 Dot-object	2020-02-27	6.5 MEDIUM	6.3 MEDIUM
dot-object before 2.1.3 is vulnerable to Prototype Pollution. The set function could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.

Vulnerabilities (CVE)