CGA-fggr-qmgm-5v3m

Published

Last updated

https://images.chainguard.dev/security/CGA-fggr-qmgm-5v3m

Package

jitsucom-jitsu

Latest Update

Pending upstream fix

Aliases

Severity

9.8

Critical

CVSS V3

Summary

Prototype pollution in webpack loader-utils

Description

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils prior to version 2.0.3 via the name variable in parseQuery.js.

References

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CGA-fggr-qmgm-5v3m

Severity

Summary

Description

References

Updates

Product

Why Chainguard

Customers

Company

Resources