Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cached-path-relative project cached-path-relative vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-23518
The package cached-path-relative prior to 1.1.0 are vulnerable to Prototype Pollution via the cache variable that is set as {} instead of Object.create(null) in the cachedPathRelative function, which allows access to the parent prototype properties when the object is used to crea...
Cached-path-relative Project Cached-path-relative
Debian Debian Linux 10.0
5
CVSSv2
CVE-2018-16472
A prototype pollution attack in cached-path-relative versions <=1.0.1 allows an malicious user to inject properties on Object.prototype which are then inherited by all the JS objects through the prototype chain causing a DoS attack.
Cached-path-relative Project Cached-path-relative
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started