CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Backbone-Query-Parameters Project: >> Backbone-Query-Parameters >> 0.4.0 Security Vulnerabilities

CVE-2021-20085

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in backbone-query-parameters 0.4.0 allows a malicious user to inject properties into Object.prototype.

CVSS Score

8.8

EPSS Score

0.004

Published

2021-04-23

Page 1

Vulnerabilities

Vulnerable Software

Backbone-Query-Parameters Project: >> Backbone-Query-Parameters >> 0.4.0 Security Vulnerabilities

Products

Pricing

Contact Us