4 matches found
CVE-2022-37264
creationtimestamp| type| source ---|---|--- 2022-09-15 20:27:51+00:00| seen| https://t.me/cibsecurity/49841...
CVE-2022-37264
Prototype pollution vulnerability in stealjs steal 2.2.4 via the optionName variable in main.js...
CVE-2022-37264
Prototype pollution vulnerability in stealjs steal 2.2.4 via the optionName variable in main.js...
CVE-2022-37264
CVE-2022-37264 affects stealjs/steal 2.2.4. The root cause is prototype pollution caused by unvalidated optionName handling in main.js, enabling an attacker to modify objects via the proto property. Documents identify this as a prototype pollution vulnerability with high impact; the CVSS base sco...