mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
728 B
728 B
CVE-2021-23329
Description
The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.
POC
Reference
- https://github.com/Geta/NestedObjectAssign/pull/11
- https://snyk.io/vuln/SNYK-JS-NESTEDOBJECTASSIGN-1065977
Github
No PoCs found on GitHub currently.