Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
11050.0%CRITICAL

Related CVEs

1
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2024-38985janryWang products depath v1.0.6 and cool-path v1.1.2 were discovered to contain a prototype pollution via the set() method at setIn (lib/index.js:90). This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.CRITICAL9.850.0%Mar 28, 2025