Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Prototype poisoning in function mapObjIndexed in Ramda 0.27.0 and earlier allows attackers to compromise integrity or availability of application via supplying a crafted object (that contains an own property "__proto__") as an argument to the function. NOTE: the vendor disputes this because the observed behavior only means that a user can create objects that the user didn't know would contain custom prototypes
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ramda 安全漏洞
Vulnerability Description
Ramda是一个适用于 JavaScript 程序员的实用函数库。 Ramda 0.27.0版本及之前版本存在安全漏洞。攻击者利用该漏洞通过提供特制的对象作为函数的参数来破坏应用程序的完整性或可用性。
CVSS Information
N/A
Vulnerability Type
N/A