Description
The package mathjs before 7.5.1 are vulnerable to Prototype Pollution via the deepExtend function that runs upon configuration updates.
Remediation
References
Related Vulnerabilities
WordPress Plugin SearchAutocomplete 'tags.php' SQL Injection (1.0.8)
Atlassian Jira CVE-2019-20402 Vulnerability (CVE-2019-20402)
SharePoint CVE-2024-30100 Vulnerability (CVE-2024-30100)
WordPress Plugin Compfight Cross-Site Scripting (1.4)
WordPress Plugin Battle Suit for Divi Security Bypass (1.10.1)