Dojox
1 CVEs
product
Monthly
In affected versions of dojox (NPM package), the jqMix method is vulnerable to Prototype Pollution. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Node.js
RCE
Code Injection
Dojox
NVD
GitHub
CVSS 3.1
8.6
EPSS
2.0%
CVE-2020-5259
npm
EPSS 2%
CVSS 8.6
HIGH
POC
PATCH
This Week
In affected versions of dojox (NPM package), the jqMix method is vulnerable to Prototype Pollution. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Node.js
RCE
Code Injection
+1
NVD
GitHub