Description

This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options (or the defaults options) are deeply merged with provided options. However, during this operation, the keys of the object being set are not checked, leading to a prototype pollution.

Remediation

References

CVE-2020-7746

Related Vulnerabilities

WordPress Plugin Gallery-Video Gallery and Youtube Gallery Cross-Site Scripting (1.2.4)

Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-37247)

PHP Out-of-bounds Read Vulnerability (CVE-2019-11036)

WordPress Plugin Better Font Awesome Cross-Site Request Forgery (2.0.1)

Oracle JRE CVE-2017-10357 Vulnerability (CVE-2017-10357)

Severity

High

Classification

CVE-2020-7746 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Tags

Missing Update Known Vulnerabilities