npm package
open-graph
pkg:npm/open-graph
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-23419 | — | < 0.2.6 | 0.2.6 | Aug 8, 2021 | This affects the package open-graph before 0.2.6. The function parse could be tricked into adding or modifying properties of Object.prototype using a __proto__ or constructor payload. |
- CVE-2021-23419Aug 8, 2021affected < 0.2.6fixed 0.2.6
This affects the package open-graph before 0.2.6. The function parse could be tricked into adding or modifying properties of Object.prototype using a __proto__ or constructor payload.