Lucene search
K

5 matches found

Circl
Circl
added 2022/07/25 6:33 p.m.6 views

CVE-2020-28441

creationtimestamp| type| source ---|---|--- 2022-07-25 18:33:08+00:00| seen| https://t.me/cibsecurity/46908...

9.8CVSS7.3AI score0.00984EPSS
Exploits1References1
NVD
NVD
added 2022/07/25 2:15 p.m.16 views

CVE-2020-28441

This affects the package conf-cfg-ini before 1.2.2. If an attacker submits a malicious INI file to an application that parses it with decode, they will pollute the prototype on the application. This can be exploited further depending on the context...

9.8CVSS0.00984EPSS
Exploits1References2
OSV
OSV
added 2022/07/25 2:15 p.m.12 views

CVE-2020-28441

This affects the package conf-cfg-ini before 1.2.2. If an attacker submits a malicious INI file to an application that parses it with decode, they will pollute the prototype on the application. This can be exploited further depending on the context...

9.8CVSS9.4AI score
Exploits0References2
CVE
CVE
added 2022/07/25 2:6 p.m.46 views

CVE-2020-28441

The CVE-2020-28441 issue affects the package conf-cfg-ini prior to 1.2.2. A malicious INI file parsed by decode can cause prototype pollution, allowing an attacker to pollute the application’s prototype and potentially enable further exploitation depending on context. Affected components: conf-cf...

9.8CVSS8.3AI score0.00984EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/07/25 2:6 p.m.22 views

CVE-2020-28441 Prototype Pollution

This affects the package conf-cfg-ini before 1.2.2. If an attacker submits a malicious INI file to an application that parses it with decode, they will pollute the prototype on the application. This can be exploited further depending on the context...

7.3CVSS9.4AI score0.00984EPSS
Exploits1References2
Rows per page
Query Builder