CVE-2024-21489

Vulnerability Description

Versions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the attribute resolves to the object prototype.

Vulnerability Details

Published Date

October 01, 2024

Last Modified

October 04, 2024

Source

NVD

CVE-2024-21489

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment