Skip to main content

Y18N

1 CVEs product

Monthly

CVE-2020-7774 npm CRITICAL POC PATCH THREAT Act Now

The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Prototype Pollution Information Disclosure Y18N Graalvm Sinec Infrastructure Network Services
NVD GitHub
CVSS 3.1
9.8
EPSS
69.1%
EPSS 69% CVSS 9.8
CRITICAL POC PATCH THREAT Act Now

The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Prototype Pollution Information Disclosure Y18N +2
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy