Litespeed.js Project

litespeed.js_project

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Litespeed.js

litespeed.js

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-23682 2Appwrite Litespeed.js Project 2Appwrite Litespeed.js Nov 21, 2024 Feb 16, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 This affects the package litespeed.js before 0.3.12; the package appwrite/server-ce from 0.12.0 and before 0.12.2, before 0.11.1. When parsing the query string in the getJsonFromUrl function, the key that is set in the r...Show more This affects the package litespeed.js before 0.3.12; the package appwrite/server-ce from 0.12.0 and before 0.12.2, before 0.11.1. When parsing the query string in the getJsonFromUrl function, the key that is set in the result object is not properly sanitized leading to a Prototype Pollution vulnerability.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-23682

2Appwrite

Litespeed.js Project

2Appwrite

Litespeed.js

Nov 21, 2024

Feb 16, 2022

N/A· v4

9.8 CRITICAL· v3

7.5 HIGH· v2

This affects the package litespeed.js before 0.3.12; the package appwrite/server-ce from 0.12.0 and before 0.12.2, before 0.11.1. When parsing the query string in the getJsonFromUrl function, the key that is set in the r...Show more