CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2021-1150

Malware in sbrugna...

9.8CVSS9.3AI score0.01916EPSS

Exploits1References3

vulnersOsv•added 2021/05/06 6:26 p.m.•2 views

@aikosia/automaton (>=0.6.0 <=0.8.1), @aikosia/automaton-cli (>=0.2.1 <=0.3.5) +27 more potentially affected by CVE-2020-7718 via gammautils (>=0.0.2 <=0.0.81)

gammautils NPM version =0.0.2, =0.6.0, =0.2.1, =0.9.0, =0.1.5, =1.0.49, =9.0.0, =0.1.44, =0.1.22, =0.1.20, =1.0.1, =0.0.9, =0.0.7, =0.0.8 and more Source cves: CVE-2020-7718 Source advisory: OSV:GHSA-PGMG-GF5P-54J8...

9.8CVSS7.2AI score0.01916EPSS

Exploits1

Github Security Blog•added 2021/05/06 6:26 p.m.•62 views

Prototype Pollution in gammautils

All versions of package gammautils up to and including version 0.0.81 are vulnerable to Prototype Pollution via the deepSet and deepMerge functions...

9.8CVSS9AI score0.01916EPSS

Exploits1References3Affected Software1

OSV•added 2021/05/06 6:26 p.m.•1 views

GHSA-PGMG-GF5P-54J8 Prototype Pollution in gammautils

All versions of package gammautils up to and including version 0.0.81 are vulnerable to Prototype Pollution via the deepSet and deepMerge functions...

9.8CVSS5.8AI score0.01916EPSS

Exploits1References2

Veracode•added 2020/09/02 5:47 a.m.•21 views

Prototype Pollution

gammautils is vulnerable to prototype pollution. The vulnerability exists as it does not restrict the proto header to be set through the deepSet and deepMerge functions...

9.8CVSS1.9AI score0.01916EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/09/01 9:25 a.m.•22 views

CVE-2020-7718 Prototype Pollution

All versions of package gammautils are vulnerable to Prototype Pollution via the deepSet and deepMerge functions...

9.8CVSS9.6AI score0.01916EPSS

Exploits1References1

CVE•added 2020/09/01 9:25 a.m.•46 views

CVE-2020-7718

CVE-2020-7718 affects the gammautils package. The connected sources confirm a Prototype Pollution vulnerability in gammautils through deepSet and deepMerge, impacting versions prior to 0.0.82 (listed as vulnerable up to 0.0.81 in GHSA/OSV/Veracode entries and PT-2020-19740). The vulnerability can...

9.8CVSS9.6AI score0.01916EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2020/09/01 12:0 a.m.•4 views

PT-2020-19740 · Unknown · Gammautils

Name of the Vulnerable Software and Affected Versions: gammautils versions prior to 0.0.82 Description: The issue concerns Prototype Pollution via the deepSet and deepMerge functions. Recommendations: For versions prior to 0.0.82, update to version 0.0.82 or later to resolve the issue...

9.8CVSS9.4AI score0.01916EPSS

Exploits1References3

vulnersOsv•added 2020/08/14 9:43 a.m.•3 views

@aikosia/automaton (>=0.6.0 <=0.8.1), @aikosia/automaton-cli (>=0.2.1 <=0.3.5) +27 more potentially affected by CVE-2020-7718 via gammautils (>=0.0.2 <=0.0.81)

9.8CVSS7.2AI score0.01916EPSS

Exploits1

Snyk•added 2020/08/14 9:43 a.m.•5 views

Prototype Pollution

Overview gammautils is a Lots of utilities for Node.js Affected versions of this package are vulnerable to Prototype Pollution via the deepSet and deepMerge functions. POC: const gammautils = require'gammautils'; var payload = JSON.parse'""proto"":""polluted"":true'; gammautils.object.deepSet,...

9.8CVSS9AI score0.01916EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by