Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Prototype Pollution
Vulnerability Description
All versions of package ts-nodash are vulnerable to Prototype Pollution via the Merge() function due to lack of validation input.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
ts-nodash 安全漏洞
Vulnerability Description
ts-nodash是一个提供对象操作的工具。 ts-nodash 存在安全漏洞,该漏洞源于缺乏验证输入,所有版本的package -nodash都容易通过Merge()函数受到原型污染的影响。
CVSS Information
N/A
Vulnerability Type
N/A