A new vulnerability was discovered: CVE-2020-8116

debricked / soot-wrapper

Analyses how you use your dependencies to figure out if you use the vulnerable parts of a vulnerable dependency

MIT License

4 stars 5 forks source link

A new vulnerability was discovered: CVE-2020-8116 #53

Closed debricked[bot] closed 2 years ago

debricked[bot] commented 3 years ago

Prototype pollution vulnerability in dot-prop npm package version 5.1.0 and earlier allows an attacker to add arbitrary properties to JavaScript language constructs such as objects.

Read more at Debricked: https://app.debricked.com/en/service/vulnerability/145150