org.webjars.npm:cached-path-relative@1.0.1 vulnerabilities
-
latest version
1.0.2
-
first published
6 years ago
-
latest version published
5 years ago
-
licenses detected
- [1.0.1,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.webjars.npm:cached-path-relative package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.webjars.npm:cached-path-relative is a memoize the results of the path.relative function. Affected versions of this package are vulnerable to Prototype Pollution via the Note: This vulnerability derives from an incomplete fix in https://security.snyk.io/vuln/SNYK-JS-CACHEDPATHRELATIVE-72573 ###PoC
How to fix Prototype Pollution? There is no fixed version for |
[0,)
|
org.webjars.npm:cached-path-relative is a memoize the results of the path.relative function. Affected versions of this package are vulnerable to Prototype Pollution. An attacker could inject properties on How to fix Prototype Pollution? Upgrade |
[,1.0.2)
|