Description

The dot package v1.1.2 uses Function() to compile templates. This can be exploited by the attacker if they can control the given template or if they can control the value set on Object.prototype.

Remediation

References

https://hackerone.com/reports/390929

Related Vulnerabilities

CVE-2022-45390 Vulnerability in maven package io.loader:loaderio-jenkins-plugin

CVE-2023-0835 Vulnerability in npm package markdown-pdf

CVE-2022-21129 Vulnerability in npm package nemo-appium

CVE-2020-7624 Vulnerability in npm package effect

CVE-2022-29546 Vulnerability in maven package org.codelibs:nekohtml

Severity

Critical

Classification

CWE-94 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Mitigation Third Party Advisory