RSS   Vulnerabilities for 'Extend2'   RSS

2022-01-10
 
CVE-2021-23568

CWE-1321
 

 
The package extend2 before 1.0.1 are vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge.

 

 >>> Vendor: Eggjs 2 Products
Egg-scripts
Extend2


Copyright 2024, cxsecurity.com

 

Back to Top