CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Class-Transformer Project: Security Vulnerabilities

CVE-2020-7637

class-transformer before 0.3.1 allow attackers to perform Prototype Pollution. The classToPlainFromExist function could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.

CVSS Score

5.3

EPSS Score

0.003

Published

2020-04-06

Page 1

Vulnerabilities

Vulnerable Software

Class-Transformer Project: Security Vulnerabilities

Products

Pricing

Contact Us