CVE-2023-26106
dot-lens vulnerable to Prototype Pollution in npm/dot-lens
Identifiers
CVE-2023-26106, GHSA-rmhg-2cvv-q7vx
Package Slug
npm/dot-lens
Vulnerability
dot-lens vulnerable to Prototype Pollution
Description
All versions of the package dot-lens is vulnerable to Prototype Pollution via the set() function in index.js file.
Affected Versions
All versions up to 1.2.3
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-03-08
| source |