Jsonpath
1 CVEs
product
Monthly
jsonpath library 1.1.1 has a prototype pollution vulnerability in the value function that allows attackers to modify JavaScript object prototypes and potentially achieve RCE.
Jsonpath
Information Disclosure
Prototype Pollution
NVD
GitHub
VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-61140
npm
EPSS 0%
CVSS 9.8
CRITICAL
PATCH
Act Now
jsonpath library 1.1.1 has a prototype pollution vulnerability in the value function that allows attackers to modify JavaScript object prototypes and potentially achieve RCE.
Jsonpath
Information Disclosure
Prototype Pollution
NVD
GitHub
VulDB