Skip to main content

Minimist

1 CVEs product

Monthly

CVE-2020-7598 npm MEDIUM POC PATCH This Month

minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Prototype Pollution Information Disclosure Minimist Leap
NVD
CVSS 3.1
5.6
EPSS
1.9%
EPSS 2% CVSS 5.6
MEDIUM POC PATCH This Month

minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Prototype Pollution Information Disclosure Minimist +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy