CykuTW

1 exploit Active since Nov 2017
CVE-2017-1001003 WRITEUP CRITICAL WRITEUP
mathjs < 3.17.0 - Prototype Pollution via Unicode Character Bypass
math.js before 3.17.0 had an issue where private properties such as a constructor could be replaced by using unicode characters when creating an object.
CVSS 9.8