Description

Affected versions of this package are vulnerable to Prototype Pollution. https://snyk.io/vuln/SNYK-JS-DATATABLESNET-598806

Remediation

References

CVE-2020-28458

Related Vulnerabilities

WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.38)

Oracle JRE Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-1493)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10403)

Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2209)

WordPress Plugin Image Photo Gallery Final Tiles Grid Security Bypass (3.3.52)

Severity

High

Classification

CVE-2020-28458 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities