Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

38 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-1107

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00633EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-6167

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01862EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-1121

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00982EPSS
Exploits1References7
Github Security Blog
Github Security Blogadded 2022/06/18 12:0 a.m.23 views

Prototype Pollution in mout

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn mixes objects into the target object, recursively mixing existing child objects as well. In both cases, the key used to access the target object recursively...

7.5CVSS4.1AI score0.01862EPSS
Exploits1References7Affected Software1
OSV
OSVadded 2022/06/18 12:0 a.m.0 views

GHSA-VVV8-XW5F-3F88 Prototype Pollution in mout

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn mixes objects into the target object, recursively mixing existing child objects as well. In both cases, the key used to access the target object recursively...

7.5CVSS7AI score0.01862EPSS
Exploits1References7
OSV
OSVadded 2022/06/17 8:15 p.m.0 views

CVE-2022-21213

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn mixes objects into the target object, recursively mixing existing child objects as well. In both cases, the key used to access the target object recursively...

7.5CVSS7.1AI score
Exploits0References5
NVD
NVDadded 2022/06/17 8:15 p.m.9 views

CVE-2022-21213

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn mixes objects into the target object, recursively mixing existing child objects as well. In both cases, the key used to access the target object recursively...

7.5CVSS0.01862EPSS
Exploits1References5
Prion
Prionadded 2022/06/17 8:15 p.m.8 views

Design/Logic Flaw

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn mixes objects into the target object, recursively mixing existing child objects as well. In both cases, the key used to access the target object recursively...

5CVSS7.5AI score0.01862EPSS
Exploits2References5
CVE
CVEadded 2022/06/17 8:5 p.m.66 views

CVE-2022-21213

CVE-2022-21213 affects all versions of the Mout package. The vulnerability arises in deepFillIn and deepMixIn, which recursively access target objects without validating the keys used to reach nested properties, enabling prototype pollution. The issue traces to an incomplete fix of CVE-2020-7792....

7.5CVSS7.4AI score0.01862EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2022/06/17 8:5 p.m.17 views

CVE-2022-21213 Prototype Pollution

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn mixes objects into the target object, recursively mixing existing child objects as well. In both cases, the key used to access the target object recursively...

7.5CVSS7.8AI score0.01862EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2022/06/17 8:0 p.m.2 views

CVE-2022-21213

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn mixes objects into the target object, recursively mixing existing child objects as well. In both cases, the key used to access the target object recursively...

7.5CVSS7.1AI score0.01862EPSS
Exploits2References6
CNNVD
CNNVDadded 2022/06/17 12:0 a.m.1 views

Mout 安全漏洞

Mout is a Javascript-based codebase from the Mout team that provides modular support for JS programming. A security vulnerability exists in Mout, which stems from the fact that the deepFillIn function used to "fill missing properties recursively" while deepMixIn mixes objects into the target obje...

7.5CVSS7.3AI score0.01862EPSS
Exploits1References6
Github Security Blog
Github Security Blogadded 2022/02/09 10:49 p.m.25 views

Prototype Pollution in mout

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn 'mixes objects into the target object, recursively mixing existing child objects as well'. In both cases, the key used to access the target object recursive...

7.5CVSS7.2AI score0.00982EPSS
Exploits1References8Affected Software1
OSV
OSVadded 2022/02/09 10:49 p.m.0 views

GHSA-PC58-WGMC-HFJR Prototype Pollution in mout

This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn 'mixes objects into the target object, recursively mixing existing child objects as well'. In both cases, the key used to access the target object recursive...

7.5CVSS5.9AI score0.00982EPSS
Exploits1References7
Github Security Blog
Github Security Blogadded 2022/02/09 10:45 p.m.37 views

Prototype Pollution in js-data

All versions of package js-data prior to 3.0.10 are vulnerable to Prototype Pollution via the deepFillIn function...

9.8CVSS8.9AI score0.00633EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2022/02/09 10:45 p.m.11 views

GHSA-MQGV-67VX-G4M5 Prototype Pollution in js-data

All versions of package js-data prior to 3.0.10 are vulnerable to Prototype Pollution via the deepFillIn function...

9.8CVSS9.3AI score0.00633EPSS
Exploits1References4
Github Security Blog
Github Security Blogadded 2022/01/06 9:58 p.m.20 views

Prototype Pollution in js-data

All versions of package js-data are vulnerable to Prototype Pollution via the deepFillIn and the set functions. This is an incomplete fix of CVE-2020-28442...

9.8CVSS4.8AI score0.01272EPSS
Exploits1References8Affected Software1
Veracode
Veracodeadded 2021/12/27 7:30 a.m.21 views

Prototype Pollution

js-data is vulnerable to pollution prototype. The vulnerability exists due to an incomplete fix of CVE-2020-28442. A remote attacker is able to inject arbitrary properties into existing construct prototypes and modify attributes via the deepFillIn and the set functions resulting in prototype...

9.8CVSS4AI score0.01272EPSS
Exploits2References5Affected Software1
OSV
OSVadded 2021/12/24 8:15 p.m.2 views

CVE-2021-23574

All versions of package js-data are vulnerable to Prototype Pollution via the deepFillIn and the set functions. This is an incomplete fix of CVE-2020-28442...

9.8CVSS7.3AI score
Exploits0References6
NVD
NVDadded 2021/12/24 8:15 p.m.11 views

CVE-2021-23574

All versions of package js-data are vulnerable to Prototype Pollution via the deepFillIn and the set functions. This is an incomplete fix of CVE-2020-28442...

9.8CVSS0.01272EPSS
Exploits1References6
Rows per page
Query Builder