High severity8.8GHSA Advisory· Published May 20, 2024· Updated Apr 15, 2026
CVE-2024-24293
CVE-2024-24293
Description
A Prototype Pollution issue in MiguelCastillo @bit/loader v.10.0.3 allows an attacker to execute arbitrary code via the M function e argument in index.js.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
@bit/loadernpm | <= 10.0.3 | — |
Affected products
2- Range: <= 10.0.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.