Property Expr
1 CVEs
product
Monthly
The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Prototype Pollution
Information Disclosure
Property Expr
NVD
GitHub
CVSS 3.1
9.8
EPSS
3.4%
CVE-2020-7707
npm
EPSS 3%
CVSS 9.8
CRITICAL
POC
PATCH
Act Now
The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Prototype Pollution
Information Disclosure
Property Expr
NVD
GitHub