object-path@0.1.3 vulnerabilities
Access deep object properties using a path
-
latest version
0.11.8
-
latest non vulnerable version
-
first published
11 years ago
-
latest version published
3 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the object-path package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
object-path is a package to access deep properties using a path Affected versions of this package are vulnerable to Prototype Pollution. A type confusion vulnerability can lead to a bypass of CVE-2020-15256 when the path components used in the PoC
How to fix Prototype Pollution? Upgrade |
<0.11.6
|
object-path is a package to access deep properties using a path Affected versions of this package are vulnerable to Prototype Pollution. The PoC
How to fix Prototype Pollution? Upgrade |
<0.11.5
|