npm package
yargs-parser
pkg:npm/yargs-parser
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-7608 | — | >= 6.0.0, < 13.1.2 | 13.1.2 | Mar 16, 2020 | yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "__proto__" payload. |
- CVE-2020-7608Mar 16, 2020affected >= 6.0.0, < 13.1.2fixed 13.1.2
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "__proto__" payload.