CVE-2021-26505

Description

Prototype pollution vulnerability in MrSwitch hello.js version 1.18.6, allows remote attackers to execute arbitrary code via hello.utils.extend function.

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics