textract icon indicating copy to clipboard operation
textract copied to clipboard

Published 20 hours ago verified publisher icon dbashford

CVE-2021-23413

Open prafullkulkarni opened this issue 3 years ago • 0 comments

Hi,

A vulnerability has been reported on jszip.

This affects the package jszip before 3.7.0. Crafting a new zip file with filenames set to Object prototype values (e.g proto, toString, etc) results in a returned object with a modified prototype instance.

prafullkulkarni avatar Sep 14 '21 05:09 prafullkulkarni