CVE-2026-44966 | shepherdwind velocity.js up to 2.1.5 prototype pollution (GHSA-j658-c2gf-x6pq)

A vulnerability identified as critical has been detected in shepherdwind velocity.js up to 2.1.5. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in improperly controlled modification of object prototype attributes.

This vulnerability is identified as CVE-2026-44966. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More