Security Advisories (1)

CVE-2020-7746 (2020-10-29)

This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options (or the defaults options) are deeply merged with provided options. However, during this operation, the keys of the object being set are not checked, leading to a prototype pollution.

NAME

Wight::Chart::ChartJS

VERSION

version 0.003

SYNOPSIS

See tests.

NAME

Wight::Chart::ChartJS - Generate static charts using chart.js

AUTHOR

Simon Elliott <simon@papercreatures.com>

COPYRIGHT AND LICENSE

This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.

To install Wight::Chart, copy and paste the appropriate command in to your terminal.

cpanm

cpanm Wight::Chart

CPAN shell

perl -MCPAN -e shell
install Wight::Chart

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

NAME

VERSION

SYNOPSIS

NAME

AUTHOR

COPYRIGHT AND LICENSE

Module Install Instructions