CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CNNVD•added 2026/03/10 12:0 a.m.•2 views

编号撤回

“form” is a form state management program developed by TanStack. “R” is a statistical computing software provided by The R Foundation. This CVE number has been withdrawn...

5.7AI score0.00052EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-53513

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00173EPSS

Exploits0References4

CNNVD•added 2025/08/05 12:0 a.m.•1 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. form is an open source form state management program from TanStack. A security vulnerability exists in Google Chrome that stems from an improper implementation of the picture-in-picture feature...

4.3CVSS4.5AI score0.00223EPSS

Exploits0References4

RedhatCVE•added 2025/02/08 4:30 a.m.•4 views

CVE-2024-57068

A prototype pollution in the lib.mutateMergeDeep function of @tanstack/form-core v0.35.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

7.5CVSS6.5AI score0.00173EPSS

Exploits0References1

OSV•added 2025/02/06 6:31 a.m.•2 views

GHSA-GGV3-VMGW-XV2Q @tanstack/form-core prototype pollution

A prototype pollution in the lib.mutateMergeDeep function of @tanstack/form-core v0.35.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

7.5CVSS7.3AI score0.00173EPSS

Exploits0References5

vulnersOsv•added 2025/02/06 6:31 a.m.•4 views

@account-kit/react (>=4.0.0 <=4.88.2), @account-kit/react-native (>=4.15.0 <=4.88.2) +50 more potentially affected by CVE-2024-57068 via @tanstack/form-core (>=0.0.1 <=0.42.0)

@tanstack/form-core NPM version =0.0.1, =4.0.0, =4.15.0, =3.13.0, =0.0.1, =0.1.1, =0.0.1, =1.0.0, =0.3.5, =0.3.3, =0.10.0 and more Source cves: CVE-2024-57068 Source advisory: OSV:GHSA-GGV3-VMGW-XV2Q...

7.5CVSS5.8AI score0.00173EPSS

Exploits0

NVD•added 2025/02/05 10:15 p.m.•6 views

CVE-2024-57068

A prototype pollution in the lib.mutateMergeDeep function of @tanstack/form-core v0.35.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

7.5CVSS0.00173EPSS

Exploits0References1

CNNVD•added 2025/02/05 12:0 a.m.•3 views

form 安全漏洞

form is an open source form state management program from TanStack. A security vulnerability exists in form version v0.35.0, which stems from the lib.mutateMergeDeep function containing a prototype contamination vulnerability...

7.5CVSS6.6AI score0.00173EPSS

Exploits0References1

CVE•added 2025/02/05 12:0 a.m.•46 views

CVE-2024-57068

Prototype pollution in @tanstack/form-core lib.mutateMergeDeep (v0.35.0) allows crafted payloads to trigger a DoS. PoC exists per connected sources; no patch/version remediation details provided in the documents. Affected: core library function; root cause: unsafe object property handling leading...

7.5CVSS6.8AI score0.00173EPSS

Exploits0References1

Cvelist•added 2025/02/05 12:0 a.m.•7 views

CVE-2024-57068

A prototype pollution in the lib.mutateMergeDeep function of @tanstack/form-core v0.35.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

0.00173EPSS

Exploits0References1

Vulnrichment•added 2025/02/05 12:0 a.m.•4 views

CVE-2024-57068

A prototype pollution in the lib.mutateMergeDeep function of @tanstack/form-core v0.35.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

6.7AI score0.00173EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by