admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-10-29 09:01:56 +00:00
parent c2e7833ca4
commit 652f1b304f
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
1 changed files with 16 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
2020/7xxx/CVE-2020-7746.json
View File

@ -48,24 +48,29 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JS-CHARTJS-1018716"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JS-CHARTJS-1018716",
"name": "https://snyk.io/vuln/SNYK-JS-CHARTJS-1018716"
},
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1019374"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1019374",
"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1019374"
},
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1019375"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1019375",
"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1019375"
},
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBCHARTJS-1019376"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBCHARTJS-1019376",
"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBCHARTJS-1019376"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/chartjs/Chart.js/pull/7920"
"refsource": "MISC",
"url": "https://github.com/chartjs/Chart.js/pull/7920",
"name": "https://github.com/chartjs/Chart.js/pull/7920"
}
]
},
@ -73,7 +78,7 @@
"description_data": [
{
"lang": "eng",
"value": "This affects the package chart.js before 2.9.4.\n The options parameter is not properly sanitized when it is processed.\r\nWhen the options are processed, the existing options (or the defaults options) are deeply merged with provided options. However, during this operation, the keys of the object being set are not checked, leading to a prototype pollution.\n"
"value": "This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options (or the defaults options) are deeply merged with provided options. However, during this operation, the keys of the object being set are not checked, leading to a prototype pollution."
}
]
},