Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Prototype Pollution
Vulnerability Description
The package madlib-object-utils before 0.1.8 are vulnerable to Prototype Pollution via the setValue method, as it allows an attacker to merge object prototypes into it. *Note:* This vulnerability derives from an incomplete fix of [CVE-2020-7701](https://security.snyk.io/vuln/SNYK-JS-MADLIBOBJECTUTILS-598676)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
N/A
Vulnerability Title
madlib-object-utils安全漏洞
Vulnerability Description
madlib-object-utils是一个应用软件。一组用于处理对象的实用函数。 madlib-object-utils 存在安全漏洞,该漏洞允许攻击者将对象原型合并到其中。
CVSS Information
N/A
Vulnerability Type
N/A