CVE List

CVE-2021-20089

Severe 9.8

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in purl 2.3.2 allows a malicious user to inject properties into Object.prototype.

Published April 23, 2021.

Affected software

Reference links

Sign Up for Alerts