CVEs-PoC/2020/CVE-2020-7774.md

CVE-2020-7774

Description

The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.

POC

Reference

• https://github.com/yargs/y18n/issues/96
• https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1038306
• https://snyk.io/vuln/SNYK-JS-Y18N-1021887
• https://www.oracle.com/security-alerts/cpuApr2021.html

Github

• https://github.com/Live-Hack-CVE/CVE-2020-7774
• https://github.com/anthonykirby/lora-packet
• https://github.com/seal-community/patches