Vulnerabilities > CVE-2020-7639 - Unspecified vulnerability in DOT Project DOT 0.2.0/1.0.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
LOW Availability impact
NONE Summary
eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |