WS-2019-0266 (High) detected in mithril.jsospec-v3.0.1 #41

mend-bolt-for-github · 2021-01-09T12:14:24Z

WS-2019-0266 - High Severity Vulnerability

Vulnerable Library - mithril.jsospec-v3.0.1

A JavaScript Framework for Building Brilliant Applications

Library home page: https://github.com/lhorie/mithril.js.git

Found in HEAD commit: d66b80275a59d3fb83b0de19b26dfa19cd115737

Found in base branch: next

Vulnerable Source Files (1)

mithril.js/performance/../querystring/parse.js

Vulnerability Details

Mithril before 2.0.2 is vulnerable to prototype pollution. The function parseQueryString() may allow a malicious user to modify the prototype of Object, causing the addition or modification of an existing property that will exist on all objects.

Publish Date: 2019-07-27

URL: WS-2019-0266

CVSS 2 Score Details (7.3)

Base Score Metrics not available

Suggested Fix

Type: Upgrade version

Origin: https://www.npmjs.com/advisories/1094

Release Date: 2019-09-25

Fix Resolution: 2.0.3

mend-bolt-for-github bot added the security vulnerability Security vulnerability detected by WhiteSource label Jan 9, 2021

shiriivtsan closed this as completed Jan 18, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

WS-2019-0266 (High) detected in mithril.jsospec-v3.0.1 #41

WS-2019-0266 (High) detected in mithril.jsospec-v3.0.1 #41

mend-bolt-for-github bot commented Jan 9, 2021 •

edited by mend-for-github-com bot

Loading

WS-2019-0266 (High) detected in mithril.jsospec-v3.0.1 #41

WS-2019-0266 (High) detected in mithril.jsospec-v3.0.1 #41

Comments

mend-bolt-for-github bot commented Jan 9, 2021 • edited by mend-for-github-com bot Loading

WS-2019-0266 - High Severity Vulnerability

mend-bolt-for-github bot commented Jan 9, 2021 •

edited by mend-for-github-com bot

Loading