We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Vulnerable Package issue exists @ Npm-yargs-parser-2.4.1 in branch master
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "proto" payload.
Namespace: CMaheshBL Repository: NodeGoat Repository Url: https://github.com/CMaheshBL/NodeGoat CxAST-Project: CMaheshBL/NodeGoat CxAST platform scan: d7c1c0af-6b2d-455e-8753-a6b87dbf733d Branch: master Application: NodeGoat Severity: MEDIUM State: NOT_IGNORED Status: RECURRENT CWE: CWE-1321
Addition Info Attack vector: LOCAL Attack complexity: LOW Confidentiality impact: LOW Availability impact: LOW Remediation Upgrade Recommendation: 5.0.1
References Advisory Pull request Commit
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Vulnerable Package issue exists @ Npm-yargs-parser-2.4.1 in branch master
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "proto" payload.
Namespace: CMaheshBL
Repository: NodeGoat
Repository Url: https://github.com/CMaheshBL/NodeGoat
CxAST-Project: CMaheshBL/NodeGoat
CxAST platform scan: d7c1c0af-6b2d-455e-8753-a6b87dbf733d
Branch: master
Application: NodeGoat
Severity: MEDIUM
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-1321
Addition Info
Attack vector: LOCAL
Attack complexity: LOW
Confidentiality impact: LOW
Availability impact: LOW
Remediation Upgrade Recommendation: 5.0.1
References
Advisory
Pull request
Commit
The text was updated successfully, but these errors were encountered: