Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-1375

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00997EPSS
Exploits1References4
Veracode
Veracode
added 2022/03/18 1:51 a.m.21 views

Prototype Pollution

argencoders-notevil is vulnerable to prototype pollution. The vulnerability exists due to a lack of sanitization to restrict access to the main context...

6.5CVSS3.4AI score0.00997EPSS
Exploits1Affected Software1
OSV
OSV
added 2022/03/18 12:1 a.m.9 views

GHSA-8G4M-CJM2-96WQ Sandbox escape in notevil and argencoders-notevil

This affects all versions of package notevil; all versions of package argencoders-notevil. It is vulnerable to Sandbox Escape leading to Prototype pollution. The package fails to restrict access to the main context, allowing an attacker to add or modify an object's prototype. Note: This...

6.5CVSS5.8AI score0.00997EPSS
Exploits1References4
OSV
OSV
added 2022/03/17 12:15 p.m.4 views

CVE-2021-23771

This affects all versions of package notevil; all versions of package argencoders-notevil. It is vulnerable to Sandbox Escape leading to Prototype pollution. The package fails to restrict access to the main context, allowing an attacker to add or modify an object's prototype. Note: This...

6.5CVSS5.8AI score0.00997EPSS
Exploits1References2
CVE
CVE
added 2022/03/17 11:20 a.m.90 views

CVE-2021-23771

CVE-2021-23771 is a sandbox-escape prototype-pollution issue affecting the npm packages notevil and argencoders-notevil. The root cause is failure to restrict access to the main context, enabling an attacker to add or modify properties on Object.prototype. Public records (NVD/SNYK/Veracode/GHSA) ...

6.5CVSS6.5AI score0.00997EPSS
Exploits1References2Affected Software2
Rows per page
Query Builder