Description
All versions of package dojo are vulnerable to Prototype Pollution via the setObject function.
Remediation
References
Related Vulnerabilities
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2020-26185)
WordPress Plugin Mobile Events Manager CSV Injection (1.4.7)
WordPress Plugin Import XML and RSS Feeds Arbitrary File Upload (2.1.5)
WordPress Plugin Smart Slider 2 Multiple Cross-Site Scripting Vulnerabilities (2.3.11)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5340)