10Nis
CVE-2024-21509 | mysql2 up to 3.9.3 text_parser.js prototype pollution (SNYK-JS-MYSQL2-6591084)
A vulnerability was found in mysql2 up to 3.9.3 and classified as critical. Affected by this issue is some unknown functionality of the file text_parser.js. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution'). This vulnerability is handled as CVE-2024-21509. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.