Open armorcodegithubqa[bot] opened 6 months ago
Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils prior to version 2.0.3 via the name variable in parseQuery.js.
File Path: package-lock.json
Mitigation: Patched version: 2.0.3
Tool Finding Id: RVA_kwDOIdZXFs66FPln
Finding Id : 79633264
Finding [79633264|https://qa.armorcode.ai/#/findings/435/2386/79633264] status changed to Confirmed Note: by vincent.goyal@armorcode.io via ArmorCode Platform
Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils prior to version 2.0.3 via the name variable in parseQuery.js.
References:
File Path: package-lock.json
Mitigation: Patched version: 2.0.3
Tool Finding Id: RVA_kwDOIdZXFs66FPln
Finding Id : 79633264