Lucene search
+L

11 matches found

Veracode
Veracode
added 2025/11/10 6:5 a.m.7 views

Prototype Pollution

magix-combine-ex is vulnerable to Prototype Pollution. The vulnerability is due to improper input validation in the util-deps.addFileDepend function, which allows an attacker to inject malicious properties into Object.prototype, leading to denial of service DoS or other unexpected behavior...

9.8CVSS6.7AI score0.00404EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31056

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.00404EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/26 2:48 p.m.7 views

CVE-2025-57321

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...

9.8CVSS6.7AI score0.00404EPSS
Exploits0References1
Snyk
Snyk
added 2025/09/24 9:30 p.m.5 views

Prototype Pollution

Overview magix-combine-ex is a 合并Magix View的html,js,css成一个js文件 Affected versions of this package are vulnerable to Prototype Pollution via the util-deps.addFileDepend function. An attacker can inject arbitrary properties into Object.prototype by supplying a crafted payload, potentially causing...

9.8CVSS8.2AI score0.00404EPSS
Exploits0References2
OSV
OSV
added 2025/09/24 9:30 p.m.6 views

GHSA-CR7H-93FH-WHWM magix-combine-ex vulnerable to prototype pollution

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions through 2.2.2 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...

6.3CVSS6.7AI score0.00404EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/09/24 9:30 p.m.9 views

magix-combine-ex vulnerable to prototype pollution

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions through 2.2.2 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...

9.8CVSS6.7AI score0.00404EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/09/24 8:15 p.m.5 views

CVE-2025-57321

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...

9.8CVSS5.8AI score0.00404EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/24 12:0 a.m.4 views

CVE-2025-57321

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...

6.3AI score0.00404EPSS
Exploits0References2
CVE
CVE
added 2025/09/24 12:0 a.m.18 views

CVE-2025-57321

The CVE-2025-57321 entry concerns magix-combine-ex. A prototype pollution flaw exists in util-deps.addFileDepend, allowing crafted payloads to inject properties into Object.prototype, with the minimum impact described as a DoS. Affected versions are stated as magix-combine-ex through 1.2.10 (and ...

9.8CVSS6.3AI score0.00404EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/09/24 12:0 a.m.13 views

CVE-2025-57321

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...

0.00404EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/24 12:0 a.m.8 views

PT-2025-39332

Name of the Vulnerable Software and Affected Versions magix-combine-ex versions through 1.2.10 Description A Prototype Pollution issue exists in the util-deps.addFileDepend function. This allows attackers to inject properties onto Object.prototype by providing a crafted payload, potentially leadi...

9.8CVSS6.5AI score0.00404EPSS
Exploits0References6
Rows per page
Query Builder