ah-next-plugin@0.1.0

Vulnerabilities

1 via 1 paths

Dependencies

119

Source

npm

Find, fix and prevent vulnerabilities in your code.

Severity
  • 1
Status
  • 1
  • 0
  • 0

high severity

Prototype Pollution

  • Vulnerable module: predefine
  • Introduced through: actionhero@27.2.0

Detailed paths

  • Introduced through: ah-next-plugin@0.1.0 actionhero@27.2.0 primus@8.0.5 fusing@1.0.0 predefine@0.1.2

Overview

predefine is a Predefine your Object.defineProperties to create a more human readable API.

Affected versions of this package are vulnerable to Prototype Pollution. It allows an attacker to cause a denial of service and may lead to remote code execution.

Remediation

There is no fixed version for predefine.

References