Prototype pollution vulnerability in the TypeORM package < 0.2.25 may allow attackers to add or modify Object properties leading to further denial of service or SQL injection attacks.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2020-09-18T20:12:16.000Z

Updated: 2024-08-04T09:48:25.595Z

Reserved: 2020-01-28T00:00:00.000Z

Link: CVE-2020-8158

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-09-18T21:15:12.747

Modified: 2026-06-17T03:25:57.653

Link: CVE-2020-8158

cve-icon Redhat

No data.