Vulnerabilities (CVE)

Filtered by vendor Dreamerslab Subscribe
Filtered by product Node.extend
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-16491 1 Dreamerslab 1 Node.extend 2024-02-28 7.5 HIGH 9.8 CRITICAL
A prototype pollution vulnerability was found in node.extend <1.1.7, ~<2.0.1 that allows an attacker to inject arbitrary properties onto Object.prototype.