Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

[GHSA-x3m3-4wpv-5vgc] jrburke requirejs vulnerable to prototype pollution #4635

Conversation

BlazingWizard
Copy link

@BlazingWizard BlazingWizard commented Jul 25, 2024

Updates

  • Affected products

Comments
requirejs fixed Prototype Pollution Vulnerability in 2.3.7

See more info:
requirejs/r.js#1015
requirejs/requirejs#1854
https://security.snyk.io/vuln/SNYK-JS-REQUIREJS-5416713

@github-actions github-actions bot changed the base branch from main to BlazingWizard/advisory-improvement-4635 July 25, 2024 09:16
@advisory-database advisory-database bot merged commit 80d48ac into BlazingWizard/advisory-improvement-4635 Jul 25, 2024
2 checks passed
@advisory-database
Copy link
Contributor

Hi @BlazingWizard! Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!

@advisory-database advisory-database bot deleted the BlazingWizard-GHSA-x3m3-4wpv-5vgc branch July 25, 2024 15:25
# for free to join this conversation on GitHub. Already have an account? # to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant