CVE-2021-23328 Vulnerability in npm package iniparserjs

Description

This affects all versions of package iniparserjs. This vulnerability relates when ini_parser.js is concentrating arrays. Depending on if user input is provided, an attacker can overwrite and pollute the object prototype of a program.

Remediation

References

https://snyk.io/vuln/SNYK-JS-INIPARSERJS-1065989

https://www.npmjs.com/package/iniparserjs

Related Vulnerabilities

CVE-2020-6457 Vulnerability in maven package org.webjars.npm:electron

CVE-2023-37949 Vulnerability in maven package io.jenkins.plugins:macstadium-orka

CVE-2023-29923 Vulnerability in maven package tech.powerjob:powerjob

CVE-2022-25912 Vulnerability in npm package simple-git

CVE-2020-8244 Vulnerability in npm package bl

Severity

Critical

Description

Remediation

References

Related Vulnerabilities

Severity

Tags

Take action and discover your vulnerabilities