Vulnerabilities (CVE)

Filtered by vendor Getadigital Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-23329 1 Getadigital 1 Nested-object-assign 2024-11-21 5.0 MEDIUM 7.5 HIGH
The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.