Vulnerabilities > CVE-2023-26113 - Unspecified vulnerability in Collection.Js Project Collection.Js

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
collection-js-project
NVD
Published: 2023-03-18
Updated: 2023-11-07

Summary

Versions of the package collection.js before 6.8.1 are vulnerable to Prototype Pollution via the extend function in Collection.js/dist/node/iterators/extend.js.

Vulnerable Configurations

Part Description Count
Application
Collection.Js_Project
195

References