npm package
chartkick
pkg:npm/chartkick
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-18841 | — | >= 3.1.0, < 3.2.0 | 3.2.0 | Nov 11, 2019 | Chartkick.js 3.1.0 through 3.1.3, as used in the Chartkick gem before 3.3.0 for Ruby, allows prototype pollution. |
- CVE-2019-18841Nov 11, 2019affected >= 3.1.0, < 3.2.0fixed 3.2.0
Chartkick.js 3.1.0 through 3.1.3, as used in the Chartkick gem before 3.3.0 for Ruby, allows prototype pollution.