Substack Minimist

2 CVEs affecting Substack Minimist. Latest disclosed: 2022-03-17. Critical: 1, High: 0.

Top CVEs affecting Substack Minimist
CVESeverityScorePublishedSummary
CVE-2021-44906Critical9.82022-03-17Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).
CVE-2020-7598Medium5.62020-03-11minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload.