Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-1531

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00123EPSS
Exploits0References3
Veracode
Veracodeadded 2024/05/22 8:13 a.m.23 views

Prototype Pollution

@bit/loader is vulnerable to Prototype Pollution. The vulnerability is due to missing proto property restrictions within the M function's e argument in index.js, which allows an attacker to execute arbitrary code...

8.8CVSS7.4AI score0.00123EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2024/05/20 6:31 p.m.16 views

GHSA-8VR4-H4RR-8PH6 MiguelCastillo @bit/loader Prototype Pollution issue

A Prototype Pollution issue in MiguelCastillo @bit/loader v.10.0.3 allows an attacker to execute arbitrary code via the M function e argument in index.js...

8.8CVSS8.9AI score0.00123EPSS
Exploits0References3
vulnersOsv
vulnersOsvadded 2024/05/20 6:31 p.m.3 views

@bit/bundler (>=12.0.0 <=12.1.3), pakit (>=2.0.0 <=2.3.0) potentially affected by CVE-2024-24293 via @bit/loader (=10.0.3)

@bit/loader NPM version =10.0.3 is affected by a known vulnerability. The following packages have a transitive dependency on @bit/loader and may be impacted: - @bit/bundler =12.0.0, =2.0.0, =2.3.0 Source cves: CVE-2024-24293 Source advisory: OSV:GHSA-8VR4-H4RR-8PH6...

8.8CVSS7.2AI score0.00123EPSS
Exploits0
NVD
NVDadded 2024/05/20 6:15 p.m.9 views

CVE-2024-24293

A Prototype Pollution issue in MiguelCastillo @bit/loader v.10.0.3 allows an attacker to execute arbitrary code via the M function e argument in index.js...

8.8CVSS7.4AI score0.00123EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/20 5:26 p.m.18 views

CVE-2024-24293

A Prototype Pollution issue in MiguelCastillo @bit/loader v.10.0.3 allows an attacker to execute arbitrary code via the M function e argument in index.js...

7.7AI score0.00123EPSS
Exploits0References1
CVE
CVEadded 2024/05/20 5:26 p.m.387 views

CVE-2024-24293

CVE-2024-24293 affects MiguelCastillo @bit/loader (version 10.0.3). The root cause is a prototype pollution flaw in the M function’s e argument within index.js, enabling arbitrary code execution. Exploitation status is not detailed in the provided documents. Remediation guidance from PT-Security ...

8.8CVSS7.7AI score0.00123EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/05/20 5:26 p.m.19 views

CVE-2024-24293

A Prototype Pollution issue in MiguelCastillo @bit/loader v.10.0.3 allows an attacker to execute arbitrary code via the M function e argument in index.js...

7.4AI score0.00123EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/05/20 12:0 a.m.2 views

bit-loader 安全漏洞

bit-loader is a framework for building module loaders by the individual developer Miguel Castillo. A security vulnerability exists in bit-loader-babel version v.10.0.3, which originated from a vulnerability that allows an attacker to execute arbitrary code via the M function e parameter in index....

8.8CVSS8.7AI score0.00123EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/05/20 12:0 a.m.6 views

PT-2024-20340 · Unknown · @Bit/Loader

Name of the Vulnerable Software and Affected Versions: @bit/loader version 10.0.3 Description: A Prototype Pollution issue allows an attacker to execute arbitrary code via the M function e argument in index.js. Recommendations: For version 10.0.3, consider disabling the M function until a patch i...

8.8CVSS8AI score0.00123EPSS
Exploits0References7
Rows per page
Query Builder