14 matches found
EUVD-2023-1736
Malicious code in bioql PyPI...
CVE-2023-26135
All versions of the package flatnest are vulnerable to Prototype Pollution via the nest function in the flatnest/nest.js file...
Prototype Pollution
flatnest is vulnerable to Prototype Pollution. An attacker can inject properties into existing prototypes via the nest function of nest.js and modify the attributes such as proto, constructor, and prototype in the obj parameter, resulting in Prototype Pollution...
dummy-package-six (>=1.0.0 <=1.0.3), dummy-package-three (=1.0.0) +10 more potentially affected by CVE-2023-26135 via flatnest (>=0.2.2 <=1.0.0)
flatnest NPM version =0.2.2, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =0.0.1, =0.1.3, =0.10.10, =0.0.1, =0.1.0, =0.0.1, =0.2.0 Source cves: CVE-2023-26135 Source advisory: OSV:GHSA-7PX2-3C2P-Q4V4...
GHSA-7PX2-3C2P-Q4V4 flatnest Prototype Pollution vulnerability
All versions of the package flatnest are vulnerable to Prototype Pollution via the nest function in flatnest/nest.js file...
flatnest Prototype Pollution vulnerability
All versions of the package flatnest are vulnerable to Prototype Pollution via the nest function in flatnest/nest.js file...
CVE-2023-26135
All versions of the package flatnest are vulnerable to Prototype Pollution via the nest function in the flatnest/nest.js file...
CVE-2023-26135
All versions of the package flatnest are vulnerable to Prototype Pollution via the nest function in the flatnest/nest.js file...
CVE-2023-26135
CVE-2023-26135 affects all versions of the flatnest package via the nest() function in flatnest/nest.js, enabling prototype pollution. The vulnerability is described across multiple feeds (Red Hat, GHSA, OSV, NVD, etc.), with the core risk being unauthorized modification of object properties at r...
CVE-2023-26135
All versions of the package flatnest are vulnerable to Prototype Pollution via the nest function in the flatnest/nest.js file...
PT-2023-20514 · Flatnest · Flatnest
Name of the Vulnerable Software and Affected Versions: flatnest versions all Description: The issue concerns Prototype Pollution via the nest function in the flatnest/nest.js file. This affects all versions of the package flatnest. Recommendations: For all versions, consider disabling the nest...
flatnest 安全漏洞
flatnest is a library from the personal developer Bryce Baril. A security vulnerability exists in flatnest that stems from easy prototype contamination via the Nest function in the flatnest/nest.js file...
37sy-build (>=1.0.0 <=1.3.3), @emintayfur/hub (>=0.0.1 <=0.1.2) +118 more potentially affected by CVE-2023-26135 via flatnest (>=0.2.2 <=1.0.1)
flatnest NPM version =0.2.2, =1.0.0, =0.0.1, =0.5.10, =0.1.2, =1.0.71, =1.0.23, =1.0.1, =1.2.1, =0.0.1-1, =1.0.1, =1.0.10, =1.0.0, =0.0.1, =1.0.6 and more Source cves: CVE-2023-26135 Source advisory: SNYK:JS-FLATNEST-3185149...
Prototype Pollution
Overview flatnest is a Flatten/Nest Javascript objects. Affected versions of this package are vulnerable to Prototype Pollution via the nest function in the flatnest/nest.js file. Details Prototype Pollution is a vulnerability affecting JavaScript. Prototype Pollution refers to the ability to...