Yargs Parser
1 CVEs
product
Monthly
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "__proto__" payload. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Prototype Pollution
Information Disclosure
Yargs Parser
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2020-7608
npm
EPSS 1%
CVSS 5.3
MEDIUM
POC
PATCH
This Month
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "__proto__" payload. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Prototype Pollution
Information Disclosure
Yargs Parser
NVD