High severity7.3NVD Advisory· Published Oct 2, 2020· Updated Jun 17, 2026
CVE-2020-7736
CVE-2020-7736
Description
The package bmoor before 0.8.12 are vulnerable to Prototype Pollution via the set function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
bmoornpm | < 0.8.12 | 0.8.12 |
Affected products
2- bmoor/bmoordescription
Patches
Vulnerability mechanics
References
5- github.com/b-heilman/bmoor/commit/7d4a086a1dc3ef11ed0b323824d02348734b7da5nvdPatchThird Party AdvisoryWEB
- snyk.io/vuln/SNYK-JS-BMOOR-598664nvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-h3rx-g5c9-8q4xghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-7736ghsaADVISORY
- www.npmjs.com/package/bmoorghsaWEB
News mentions
0No linked articles in our index yet.