CVE-2023-26132

Published: 2023-06-10T05:15Z

Last Modified: 2025-01-06T17:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt