| Max CVSS | 7.5 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-15366 | 6.8 |
An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended agains
|
21-06-2024 - 19:15 | 15-07-2020 - 20:15 | |
| CVE-2020-7774 | 7.5 |
The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.
|
02-12-2022 - 19:40 | 17-11-2020 - 13:15 | |
| CVE-2020-7608 | 4.6 |
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "__proto__" payload.
|
15-11-2022 - 16:40 | 16-03-2020 - 20:15 | |
| CVE-2020-8277 | 5.0 |
A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the application to resolve a DNS record with a larger number
|
10-05-2022 - 15:25 | 19-11-2020 - 01:15 |