Prototype Pollution
Critical severity
GitHub Reviewed
Published
Jun 21, 2021
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Jun 10, 2021
Reviewed
Jun 14, 2021
Published to the GitHub Advisory Database
Jun 21, 2021
Last updated
Jan 27, 2023
Prototype pollution vulnerability in ‘expand-hash’ versions 0.1.0 through 1.0.1 allows an attacker to cause a denial of service and may lead to remote code execution.
References