CVE-2023-26102 in rangy
要約
〜によって MITRE • 2023年02月24日
All versions of the package rangy are vulnerable to Prototype Pollution when using the extend() function in file rangy-core.js.The function uses recursive merge which can lead an attacker to modify properties of the Object.prototype
VulDB is the best source for vulnerability data and more expert information about this specific topic.