35 matches found
CVE-2022-37621
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...
CVE-2022-37621
CVE-2022-37621 affects thlorenz browserify-shim 3.8.15, with a prototype pollution in resolve-shims.js (resolveShims) exploitable via the fullPath variable. Risk details from sources indicate a CRITICAL impact (CVSSv3.1: 9.8) and network access are possible, with no user interaction required. Rem...
PT-2022-24032 · Unknown · Browserify-Shim
Name of the Vulnerable Software and Affected Versions: browserify-shim version 3.8.15 Description: The issue is related to a prototype pollution vulnerability in the resolveShims function, located in resolve-shims.js. This vulnerability is exploitable via the fullPath variable in resolve-shims.js...
CVE-2022-37621
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...
Prototype Pollution
browserify-shim is vulnerable to prototype pollution. The vulnerability exists due to the separateExposeGlobals function in resolve-shims.js, which doesn’t restrict proto or constructor keys in the supplied shim which allows an attacker to modify object prototypes...
thlorenz browserify-shim vulnerable to prototype pollution
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
GHSA-866W-WM4H-95C6 thlorenz browserify-shim vulnerable to prototype pollution
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
Code injection
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
PT-2022-24029 · Thlorenz · Browserify-Shim
Name of the Vulnerable Software and Affected Versions: thlorenz browserify-shim version 3.8.15 Description: The issue is related to a prototype pollution vulnerability in the resolveShims function within the resolve-shims.js file of thlorenz browserify-shim. This vulnerability is exploited via th...
CVE-2022-37617
Prototype pollution in thlorenz browserify-shim 3.8.15, due to the k variable handling in resolve-shims.js (resolveShims function). Connected sources list this as a vulnerability in the browserify-shim package, with the issue affecting resolution logic in resolve-shims.js and enabling potential p...
browserify-shim 安全漏洞
browserify-shim is used by thlorenz individual developers to make CommonJS incompatible files browsable. A security vulnerability exists in browserify-shim version 3.8.15, which stems from a prototype contamination vulnerability found in the resolveShims function...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...