Description

The dot package v1.1.2 uses Function() to compile templates. This can be exploited by the attacker if they can control the given template or if they can control the value set on Object.prototype.

Remediation

References

https://hackerone.com/reports/390929

Related Vulnerabilities

CVE-2020-13951 Vulnerability in maven package org.apache.openmeetings:openmeetings-server

CVE-2023-44487 Vulnerability in maven package org.apache.tomcat:tomcat-coyote

CVE-2023-22621 Vulnerability in npm package @strapi/plugin-users-permissions

CVE-2023-1784 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-parent

CVE-2021-25864 Vulnerability in npm package node-red-contrib-huemagic

Severity

Critical

Classification

CWE-94 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Mitigation Third Party Advisory