CVE-2020-28267
npm/@strikeentco/set
Improper Input Validation
A prototype pollution vulnerability in @strikeentco/set may allow an attacker to cause a denial of service, or possibly lead to remote code execution.
Version 1.0.0
Upgrade to version 1.0.1 or above.
2020-11-26
source |