CVE-2020-7641

Object prototype pollution in npm/grunt-util-property

Identifiers

GHSA-4hq8-jgr8-mw9j, CVE-2020-7641

Package Slug

npm/grunt-util-property

Vulnerability

Object prototype pollution

Description

This affects all versions of package grunt-util-property. The function call could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.

Affected Versions

All versions up to 0.0.2

Solution

Unfortunately, there is no solution available yet.

Last Modified

2022-07-26

source