VDB
KO
CRITICAL 9.8

GHSA-f98m-q3hr-p5wq

Prototype Pollution in locutus

Details

All versions of package locutus prior to version 2.0.12 are vulnerable to Prototype Pollution via the php.strings.parse_str function.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / locutus
Introduced in: 0 Fixed in: 2.0.12
Fix npm install locutus@2.0.12

References