steal icon indicating copy to clipboard operation
steal copied to clipboard

Published 20 hours ago verified publisher icon stealjs

[CVE-2022-37266] Prototype pollution found in babel.js

Open secdevlpr26 opened this issue 2 years ago • 0 comments

Prototype pollution vulnerability in function extend in babel.js in stealjs steal 2.2.4 via the key variable in babel.js.

The prototype pollution vulnerability can be mitigated with several best practices described here: https://learn.snyk.io/lessons/prototype-pollution/javascript/

secdevlpr26 avatar Sep 14 '22 09:09 secdevlpr26