Mick Hansen

1 exploit Active since Jun 2023
CVE-2023-26132 WRITEUP HIGH WRITEUP
Package dottie <2.0.4 - Info Disclosure
Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file.
CVSS 7.5