Proto Package Object Property Injection Vulnerability

Proto Package Object Property Injection Vulnerability

CVE-2021-23426 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

This affects all versions of package Proto. It is possible to inject pollute the object property of an application using Proto by leveraging the merge function.

Learn more about our Web Application Penetration Testing UK.