17 matches found
CVE-2025-63703
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
artemproject2 (>=1.2.1 <=1.8.8) potentially affected by CVE-2025-63703 via parse-ini (=1.0.6)
parse-ini NPM version =1.0.6 is affected by a known vulnerability. The following packages have a transitive dependency on parse-ini and may be impacted: - artemproject2 =1.2.1, =1.8.8 Source cves: CVE-2025-63703 Source advisory: SNYK:JS-PARSEINI-16787377...
artemproject2 (>=1.2.1 <=1.8.8) potentially affected by CVE-2025-63703 via parse-ini (=1.0.6)
parse-ini NPM version =1.0.6 is affected by a known vulnerability. The following packages have a transitive dependency on parse-ini and may be impacted: - artemproject2 =1.2.1, =1.8.8 Source cves: CVE-2025-63703 Source advisory: OSV:GHSA-X72J-HV9F-QQH4...
NPM: parse-ini is vulnerable to Prototype Pollution in index.js()
NPM: parse-ini is vulnerable to Prototype Pollution in index.js vulnerability discovered by ? in WordPress Npm parse-ini versions 1.0.6...
Prototype Pollution
Overview parse-ini is a Parse ini file to get the content and variables of the ini file as node object. Affected versions of this package are vulnerable to Prototype Pollution via the index.js file. An attacker can manipulate object properties and potentially execute arbitrary code or alter...
EUVD-2025-209729
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
GHSA-X72J-HV9F-QQH4 parse-ini is vulnerable to Prototype Pollution in index.js()
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
parse-ini is vulnerable to Prototype Pollution in index.js()
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
CVE-2025-63703
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
CVE-2025-63703
CVE-2025-63703 affects the npm package parse-ini v1.0.6 and is a Prototype Pollution vulnerability in index.js(). The accompanying metrics indicate a CRITICAL impact (CVSS 3.1: 9.8) with NETWORK attack vector, no privileges required, no user interaction, and high impact on confidentiality, integr...
CVE-2025-63703
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
PT-2026-38452
Name of the Vulnerable Software and Affected Versions parse-ini version 1.0.6 Description The npm package is subject to Prototype Pollution within the index.js function. Prototype Pollution occurs when an attacker can manipulate the prototype of an object, potentially leading to altered applicati...
CVE-2025-63703
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
parse-ini 安全漏洞
parse-ini is a INI configuration file parsing library developed by the individual developer at pein-consulting.de. Version 1.0.6 of parse-ini contains a security vulnerability, which stems from prototype pollution in the index.js file...
CVE-2025-63703
npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...
EUVD-2026-22704
October Rain has Environment Variable Exfiltration via INI Parser Interpolation...
[SECURITY] Fedora 27 Update: iniparser-4.0-7.20160821git.fc27
iniParser is an ANSI C library to parse "INI-style" files, often used to hold application configuration information...