Vulnerabilities > Json8 Merge Patch Project

DATE	CVE	VULNERABILITY TITLE	RISK
2020-11-09	CVE-2020-8268	Improper Input Validation vulnerability in Json8-Merge-Patch Project Json8-Merge-Patch Prototype pollution vulnerability in json8-merge-patch npm package < 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor. network low complexity json8-merge-patch-project CWE-20	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.

Vulnerabilities > Json8 Merge Patch Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Json8 Merge Patch Project"}]}

Vulnerabilities > Json8 Merge Patch Project