Vulnerabilities (CVE)

Filtered by vendor Json8-merge-patch Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-8268 1 Json8-merge-patch Project 1 Json8-merge-patch 2024-11-21 5.0 MEDIUM 7.5 HIGH
Prototype pollution vulnerability in json8-merge-patch npm package < 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor.