Description All versions of package dojo are vulnerable to Prototype Pollution via the setObject function. Remediation References CVE-2021-23450 Related Vulnerabilities WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.5) TYPO3 Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6146) WordPress Plugin Easy Registration Forms Cross-Site Scripting (2.1.1) Internet Information Services Other Vulnerability (CVE-2001-1186) Jboss EAP Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') Vulnerability (CVE-2019-10174) Severity Critical Classification CVE-2021-23450 CWE-1321 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities