npm package

mquery

pkg:npm/mquery

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2020-35149		—		< 3.2.3	3.2.3	Dec 11, 2020	lib/utils.js in mquery before 3.2.3 allows a pollution attack because a special property (e.g., __proto__) can be copied during a merge or clone operation.

CVE-2020-35149Dec 11, 2020
affected < 3.2.3fixed 3.2.3
lib/utils.js in mquery before 3.2.3 allows a pollution attack because a special property (e.g., __proto__) can be copied during a merge or clone operation.