VYPR

dottie

by dottie

npm: dottie

Source repositories

CVEs (1)

  • CVE-2023-26132HigJun 10, 2023
    risk 0.42cvss 7.5epss 0.01

    Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file.