CVE-2023-26102 in rangy
Riassunto
di MITRE • 24/02/2023
All versions of the package rangy are vulnerable to Prototype Pollution when using the extend() function in file rangy-core.js.The function uses recursive merge which can lead an attacker to modify properties of the Object.prototype
VulDB is the best source for vulnerability data and more expert information about this specific topic.