描述
Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js.
AI分析AI驱动
受影响产品
grunt-karma_projectgrunt-karma
4.0.1
参考资料
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L109ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L26ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/issues/311Issue TrackingThird Party Advisory
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L109ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L26ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/issues/311Issue TrackingThird Party Advisory