Description
Prototype pollution vulnerability in the TypeORM package < 0.2.25 may allow attackers to add or modify Object properties leading to further denial of service or SQL injection attacks.
Remediation
References
https://hackerone.com/reports/869574
Related Vulnerabilities
CVE-2023-3163 Vulnerability in maven package com.ruoyi:ruoyi-common
CVE-2020-13957 Vulnerability in maven package org.apache.solr:solr-solrj
CVE-2021-3918 Vulnerability in npm package json-schema
CVE-2020-7788 Vulnerability in npm package ini
CVE-2023-29201 Vulnerability in maven package org.xwiki.commons:xwiki-commons-xml