AIKIDO-2023-10001
axios is vulnerable to Prototype Pollution
77
High
axios JS
AIKIDO-2023-10001: axios is vulnerable to Prototype Pollution in versions 0.1.0 - 0.28.1 and 1.0.0 - 1.6.3.
Prototype Pollution
Vuln in 0.1.0 - 0.28.1
Fixed in 0.29.0
Vuln in 1.0.0 - 1.6.3
Fixed in 1.6.4
No CVE available
TL;DR
Who does this affect?
How can it be fixed?
Background info
Our intel, your security
Open-source
Aikido Intel is available under AGPL license, developers may freely use, modify, and distribute the vulnerability & malware feed.
License the intel database
Want to integrate our threat intelligence into your product? Get access through our commercial API.
Get protected by Aikido- it's free.
Easily secure your software supply chain, and more. Secure your your code, cloud, and runtime with Aikido’s all-in-one security platform.
Secure everything you build, host and run with Aikido
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Registered address: Coupure Rechts 88, 9000, Ghent, Belgium
🇪🇺 Office address: Gebroeders van Eyckstraat 2, 9000, Ghent, Belgium
🇺🇸 Office address: 95 Third St, 2nd Fl, San Francisco, CA 94103, US
Any use of the intel.aikido.dev website and content is explicitly subject to Aikido Terms of Use.
The Intel vulnerability and malware feed is licensed under a dual license.