345 matches found
CVE-2022-37621
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...
CVE-2022-37621
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...
CVE-2022-37621
CVE-2022-37621 affects thlorenz browserify-shim 3.8.15, with a prototype pollution in resolve-shims.js (resolveShims) exploitable via the fullPath variable. Risk details from sources indicate a CRITICAL impact (CVSSv3.1: 9.8) and network access are possible, with no user interaction required. Rem...
browserify-shim 安全漏洞
browserify-shim is used by thlorenz individual developers to make CommonJS incompatible files browsable. A security vulnerability exists in browserify-shim version 3.8.15, which stems from a prototype contamination vulnerability in the resolveShims function in resolve-shims.js...
CVE-2022-37621
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...
CVE-2022-37621
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...
PT-2022-24032 · Unknown · Browserify-Shim
Name of the Vulnerable Software and Affected Versions: browserify-shim version 3.8.15 Description: The issue is related to a prototype pollution vulnerability in the resolveShims function, located in resolve-shims.js. This vulnerability is exploitable via the fullPath variable in resolve-shims.js...
Prototype Pollution
browserify-shim is vulnerable to prototype pollution. The vulnerability exists due to the separateExposeGlobals function in resolve-shims.js, which doesn’t restrict proto or constructor keys in the supplied shim which allows an attacker to modify object prototypes...
thlorenz browserify-shim vulnerable to prototype pollution
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
GHSA-866W-WM4H-95C6 thlorenz browserify-shim vulnerable to prototype pollution
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
Code injection
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
browserify-shim 安全漏洞
browserify-shim is used by thlorenz individual developers to make CommonJS incompatible files browsable. A security vulnerability exists in browserify-shim version 3.8.15, which stems from a prototype contamination vulnerability found in the resolveShims function...
CVE-2022-37617
Prototype pollution in thlorenz browserify-shim 3.8.15, due to the k variable handling in resolve-shims.js (resolveShims function). Connected sources list this as a vulnerability in the browserify-shim package, with the issue affecting resolution logic in resolve-shims.js and enabling potential p...
PT-2022-24029 · Thlorenz · Browserify-Shim
Name of the Vulnerable Software and Affected Versions: thlorenz browserify-shim version 3.8.15 Description: The issue is related to a prototype pollution vulnerability in the resolveShims function within the resolve-shims.js file of thlorenz browserify-shim. This vulnerability is exploited via th...
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...
Malicious Package
Overview browserify-snap is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package w...
Malicious code in string_decoder-browserify (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f6ed1ac34f647ceb002ac04afb4e97e6d9a0878df27d45531f260f0013d4f296 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...