Description

The dot package v1.1.2 uses Function() to compile templates. This can be exploited by the attacker if they can control the given template or if they can control the value set on Object.prototype.

Remediation

References

https://hackerone.com/reports/390929

Related Vulnerabilities

CVE-2023-26102 Vulnerability in npm package rangy

CVE-2023-28155 Vulnerability in maven package org.webjars.npm:request

CVE-2019-17495 Vulnerability in maven package org.webjars.npm:swagger-ui

CVE-2018-3745 Vulnerability in npm package atob

CVE-2022-24197 Vulnerability in maven package com.itextpdf:itext7-core

Severity

Critical

Classification

CWE-94 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Mitigation Third Party Advisory