Vulnerabilities/

steal vulnerable to Prototype Pollution via alias variable

Severity:: High

Description

Prototype pollution vulnerability in stealjs steal via the alias variable in babel.js.

Recommendation

No fix is available yet. Followings are affected versions:

<= 2.3.0

References

Related Issues

Tags:: npm; steal

Anything's wrong? Let us know Last updated on January 31, 2023

This issue is available in SmartScanner Professional