Open RobertMickleCx opened 1 year ago
Vulnerable Package issue exists @ Npm-lodash-4.17.11 in branch master
Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.
Namespace: RobertMickleCx Repository: NodeGoat Repository Url: https://github.com/RobertMickleCx/NodeGoat CxAST-Project: RobertMickleCx/NodeGoat CxAST platform scan: 421abb05-2701-4c6b-8cb3-89f91b91b3aa Branch: master Application: NodeGoat Severity: HIGH State: NOT_IGNORED Status: RECURRENT CWE: CWE-1321
Additional Info Attack vector: NETWORK Attack complexity: HIGH Confidentiality impact: NONE Availability impact: HIGH
References Advisory Issue Pull request Commit Advisory Disclosure Issue
Vulnerable Package issue exists @ Npm-lodash-4.17.11 in branch master
Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.
Namespace: RobertMickleCx Repository: NodeGoat Repository Url: https://github.com/RobertMickleCx/NodeGoat CxAST-Project: RobertMickleCx/NodeGoat CxAST platform scan: 421abb05-2701-4c6b-8cb3-89f91b91b3aa Branch: master Application: NodeGoat Severity: HIGH State: NOT_IGNORED Status: RECURRENT CWE: CWE-1321
Additional Info Attack vector: NETWORK Attack complexity: HIGH Confidentiality impact: NONE Availability impact: HIGH
References Advisory Issue Pull request Commit Advisory Disclosure Issue