Vulnerabilities (CVE)

Filtered by vendor Deep-get-set Project Subscribe
Filtered by product Deep-get-set
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-21231 1 Deep-get-set Project 1 Deep-get-set 2024-11-21 7.5 HIGH 7.5 HIGH
All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. **Note:** This vulnerability derives from an incomplete fix of [CVE-2020-7715](https://security.snyk.io/vuln/SNYK-JS-DEEPGETSET-598666)
CVE-2020-7715 1 Deep-get-set Project 1 Deep-get-set 2024-11-21 7.5 HIGH 9.8 CRITICAL
All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function.