Lucene search
CVE-2022-42743
deep-parse-json v1.0.2 allows external attacker to edit or add new properties to object due to lack of incoming JSON key validation
Show more
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | deep-parse-json vulnerable to Prototype Pollution | 4 Nov 202212:00 | – | osv |
 | CVE-2022-42743 | 3 Nov 202220:15 | – | cve |
 | Code injection | 3 Nov 202220:15 | – | prion |
 | deep-parse-json vulnerable to Prototype Pollution | 4 Nov 202212:00 | – | github |
 | CVE-2022-42743 | 3 Nov 202220:15 | – | nvd |
 | Prototype Pollution | 7 Nov 202219:05 | – | veracode |
[
{
"vendor": "n/a",
"product": "deep-parse-json",
"versions": [
{
"version": "1.0.2",
"status": "affected"
}
]
}
]| Source | Link |
|---|---|
| fluidattacks | www.fluidattacks.com/advisories/buuren/ |
| github | www.github.com/sibu-github/deep-parse-json |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo03 Nov 2022 00:00Current
5.5Medium risk
Vulners AI Score5.5
EPSS0.00069