Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Skratchdot Subscribe
Filtered by product Object-path-set
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-23507 1 Skratchdot 1 Object-path-set 2022-02-09 7.5 HIGH 9.8 CRITICAL
The package object-path-set before 1.0.2 are vulnerable to Prototype Pollution via the setPath method, as it allows an attacker to merge object prototypes into it. *Note:* This vulnerability derives from an incomplete fix in https://security.snyk.io/vuln/SNYK-JS-OBJECTPATHSET-607908