mathjs 5.0.4
1 security vulnerability
found in version
5.0.4
Prototype Pollution in mathjs
high severity CVE-2020-7743
high severity
CVE-2020-7743
Affected versions:
< 7.5.1
The package mathjs before 7.5.1 are vulnerable to Prototype Pollution via the deepExtend function that runs upon configuration updates.
Author did not declare license for this package in the source code.
This package version has a Apache-2.0 license in the source code, however it was not declared in the source code.
This package version is available.
This package version has not been yanked and is still available for usage.