Thanks to visit codestin.com Credit goes to github.com
We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 6d55d1f commit a41a23fCopy full SHA for a41a23f
1 file changed
javascript/ql/src/Security/CWE-400/PrototypePollution.ql
@@ -3,8 +3,8 @@
3
* @description Recursively merging a user-controlled object into another object
4
* can allow an attacker to modify the built-in Object prototype.
5
* @kind path-problem
6
- * @problem.severity warning
7
- * @precision medium
+ * @problem.severity error
+ * @precision high
8
* @id js/prototype-pollution
9
* @tags security
10
* external/cwe/cwe-250
0 commit comments