← back
CVE-2019-18841

CVE-2019-18841

EPSS 1.4%
Chartkick.js 3.1.0 through 3.1.3, as used in the Chartkick gem before 3.3.0 for Ruby, allows prototype pollution.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://chartkick.comhttps://github.com/ankane/chartkick/blob/master/CHANGELOG.mdhttps://github.com/ankane/chartkick/commit/b810936bbf687bc74c5b6dba72d2397a399885fahttps://github.com/ankane/chartkick/commits/masterhttps://github.com/ankane/chartkick.js/issues/117https://rubygems.org/gems/chartkick/