Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-0816

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01627EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2022/02/01 12:50 a.m.36 views

Prototype Pollution in bmoor

The package bmoor before 0.10.1 is vulnerable to Prototype Pollution due to missing sanitization in set function. Note: This vulnerability derives from an incomplete fix in CVE-2020-7736...

9.8CVSS3.1AI score0.01627EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2022/02/01 12:50 a.m.12 views

GHSA-4M8H-H59M-M34J Prototype Pollution in bmoor

The package bmoor before 0.10.1 is vulnerable to Prototype Pollution due to missing sanitization in set function. Note: This vulnerability derives from an incomplete fix in CVE-2020-7736...

7.3CVSS9.3AI score0.01627EPSS
Exploits1References6
Veracode
Veracode
added 2022/01/31 10:47 a.m.15 views

Prototype Pollution

bmoor is vulnerable to prototype pollution. The vulnerability exists due to an incomplete fix for CVE-2020-7736 where an attacker is able to inject properties into existing construct prototypes and modify attributes such as proto, constructor and prototype via the set function...

9.8CVSS4.4AI score0.01627EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2022/01/28 10:15 p.m.20 views

Design/Logic Flaw

The package bmoor before 0.10.1 are vulnerable to Prototype Pollution due to missing sanitization in set function. Note: This vulnerability derives from an incomplete fix in CVE-2020-7736...

7.5CVSS9.4AI score0.01627EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2022/01/28 9:31 p.m.61 views

CVE-2021-23558

The CVE-2021-23558 entry affects the JavaScript library bmoor prior to 0.10.1, where the set function allows Prototype Pollution due to missing input sanitization. The vulnerability is linked to an incomplete fix referenced by CVE-2020-7736. Practical impact is Prototype Pollution risk in objects...

9.8CVSS8.3AI score0.01627EPSS
Exploits1References3Affected Software1
vulnersOsv
vulnersOsv
added 2022/01/18 3:13 p.m.5 views

bmoor-comm (>=0.0.1 <=0.0.3) potentially affected by CVE-2020-7736 +1 more via bmoor (>=0.0.5 <=0.0.7)

bmoor NPM version =0.0.5, =0.0.1, =0.0.3 Source cves: CVE-2020-7736, CVE-2021-23558 Source advisory: SNYK:JS-BMOOR-2342622...

9.8CVSS7.2AI score0.01627EPSS
Exploits2
vulnersOsv
vulnersOsv
added 2021/05/10 6:37 p.m.4 views

bmoor-cache (>=0.3.0 <=0.6.0), bmoor-comm (>=0.0.1 <=0.6.0) +4 more potentially affected by CVE-2020-7736 via bmoor (>=0.0.5 <=0.5.1)

bmoor NPM version =0.0.5, =0.3.0, =0.0.1, =0.0.1, =0.1.0, =0.0.4, =0.6.0, =0.6.43 Source cves: CVE-2020-7736 Source advisory: OSV:GHSA-H3RX-G5C9-8Q4X...

9.8CVSS7.2AI score0.01469EPSS
Exploits1
Cvelist
Cvelist
added 2020/10/02 9:25 a.m.37 views

CVE-2020-7736 Prototype Pollution

The package bmoor before 0.8.12 are vulnerable to Prototype Pollution via the set function...

7.3CVSS8.4AI score0.01469EPSS
Exploits1References2
CVE
CVE
added 2020/10/02 9:25 a.m.54 views

CVE-2020-7736

The CVE-2020-7736 entry applies to the JavaScript package bmoor . Affected versions are those prior to 0.8.12, with vulnerability described as a Prototype Pollution flaw exposed through the vulnerable function set . The issue arises from unsafe handling that allows pollution of object prototypes,...

9.8CVSS8.2AI score0.01469EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder