11 matches found
Prototype Pollution
magix-combine-ex is vulnerable to Prototype Pollution. The vulnerability is due to improper input validation in the util-deps.addFileDepend function, which allows an attacker to inject malicious properties into Object.prototype, leading to denial of service DoS or other unexpected behavior...
EUVD-2025-31056
Malicious code in bioql PyPI...
CVE-2025-57321
A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...
Prototype Pollution
Overview magix-combine-ex is a 合并Magix View的html,js,css成一个js文件 Affected versions of this package are vulnerable to Prototype Pollution via the util-deps.addFileDepend function. An attacker can inject arbitrary properties into Object.prototype by supplying a crafted payload, potentially causing...
GHSA-CR7H-93FH-WHWM magix-combine-ex vulnerable to prototype pollution
A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions through 2.2.2 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...
magix-combine-ex vulnerable to prototype pollution
A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions through 2.2.2 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...
CVE-2025-57321
A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...
CVE-2025-57321
A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...
CVE-2025-57321
The CVE-2025-57321 entry concerns magix-combine-ex. A prototype pollution flaw exists in util-deps.addFileDepend, allowing crafted payloads to inject properties into Object.prototype, with the minimum impact described as a DoS. Affected versions are stated as magix-combine-ex through 1.2.10 (and ...
CVE-2025-57321
A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service DoS as the minimum consequence...
PT-2025-39332
Name of the Vulnerable Software and Affected Versions magix-combine-ex versions through 1.2.10 Description A Prototype Pollution issue exists in the util-deps.addFileDepend function. This allows attackers to inject properties onto Object.prototype by providing a crafted payload, potentially leadi...