266 matches found
Prototype Pollution
json-schema-editor-visual is vulnerable to Prototype Pollution. The vulnerability is due to insufficient validation of user-supplied input in the setData and deleteData functions, which allows an attacker to supply a crafted payload to inject or delete properties on Object.prototype, potentially...
Malicious code in json-schema-to-typescript-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 148a68690ce752d3b4d67269d4cdd05066913f5abbc344c7f7bf9ac550af794b The package json-schema-to-typescript-example was found to contain malicious code. Source: ossf-package-analysis...
CVE-2025-54858
When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content profile that has a malformed JSON schema, and the security policy is applied to a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End o...
EUVD-2025-34632
When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content profile that has a malformed JSON schema, and the security policy is applied to a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End o...
CVE-2025-54858
When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content profile that has a malformed JSON schema, and the security policy is applied to a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End o...
CVE-2025-54858 BIG-IP Advanced WAF and ASM vulnerability
When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content profile that has a malformed JSON schema, and the security policy is applied to a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End o...
CVE-2025-54858 BIG-IP Advanced WAF and ASM vulnerability
When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content profile that has a malformed JSON schema, and the security policy is applied to a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End o...
CVE-2025-54858
CVE-2025-54858 affects BIG-IP Advanced WAF/ASM where a malformed JSON schema in a JSON content profile can cause the bd process to terminate on a configured virtual server, triggering DoS. Affected BIG-IP branches include BIG-IP Advanced WAF/ASM (16.x, 17.x) with fixes introduced in 17.5.1.3 and ...
EUVD-2021-2320
Malware in sbrugna...
EUVD-2024-1438
Malicious code in bioql PyPI...
EUVD-2025-16356
Malicious code in bioql PyPI...
EUVD-2025-10671
Malicious code in bioql PyPI...
EUVD-2025-31053
Malicious code in bioql PyPI...
EUVD-2022-1195
Malicious code in bioql PyPI...
CVE-2025-57320
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
Prototype Pollution
Overview json-schema-editor-visual is a jsonschema editor Affected versions of this package are vulnerable to Prototype Pollution via the setData or deleteData functions. An attacker can manipulate the prototype of objects by supplying a crafted payload, potentially leading to unauthorized...
json-schema-editor-visual vulnerable to prototype pollution
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
GHSA-3C3P-XH4F-PFH7 json-schema-editor-visual vulnerable to prototype pollution
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
graphos-cli (>=1.0.0 <=1.0.1), panshi-client (>=0.0.7 <=0.0.8) potentially affected by CVE-2025-57320 via json-schema-editor-visual (>=1.1.1 <=2.0.0)
json-schema-editor-visual NPM version =1.1.1, =1.0.0, =0.0.7, =0.0.8 Source cves: CVE-2025-57320 Source advisory: SNYK:JS-JSONSCHEMAEDITORVISUAL-13110010...
graphos-cli (>=1.0.0 <=1.0.1), panshi-client (>=0.0.7 <=0.0.8) potentially affected by CVE-2025-57320 via json-schema-editor-visual (>=1.1.1 <=2.0.0)
json-schema-editor-visual NPM version =1.1.1, =1.0.0, =0.0.7, =0.0.8 Source cves: CVE-2025-57320 Source advisory: OSV:GHSA-3C3P-XH4F-PFH7...