Prototype Pollution in node-forgenode-forge
The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. Note: Version 0.10.0 is a breaking change removing the vulnerable functions.
Upgrade to version 0.10.0 or later.
Have content suggestions? Send them to [email protected]
publishedAdvisory PublishedSep 30th, 2020
reportedReported by UnknownSep 30th, 2020