Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-6228

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00368EPSS
Exploits1References4
Veracode
Veracode
added 2022/07/18 4:25 a.m.22 views

Prototype Pollution

grunt-util-property is vulnerable to prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as proto, constructor and prototype...

7.8CVSS7.3AI score0.00368EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2022/07/18 12:0 a.m.28 views

grunt-util-property 0.0.2 function call can add/modify properties of Object.prototype using a __proto__ payload

This affects all versions of package grunt-util-property. The function call could be tricked into adding or modifying properties of Object.prototype using a proto payload...

7.8CVSS7.3AI score0.00368EPSS
Exploits1References4Affected Software1
vulnersOsv
vulnersOsv
added 2022/07/18 12:0 a.m.5 views

grunt-git-describe (>=2.3.1 <=2.4.4), grunt-git-describe-plus (=2.3.3-0) +3 more potentially affected by CVE-2020-7641 via grunt-util-property (=0.0.2)

grunt-util-property NPM version =0.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on grunt-util-property and may be impacted: - grunt-git-describe =2.3.1, =0.1.5, =0.0.1, =0.0.4 Source cves: CVE-2020-7641 Source advisory: OSV:GHSA-4HQ8-JGR8-MW9J...

7.8CVSS7.1AI score0.00368EPSS
Exploits1
OSV
OSV
added 2022/07/18 12:0 a.m.1 views

GHSA-4HQ8-JGR8-MW9J grunt-util-property 0.0.2 function call can add/modify properties of Object.prototype using a __proto__ payload

This affects all versions of package grunt-util-property. The function call could be tricked into adding or modifying properties of Object.prototype using a proto payload...

7.8CVSS5.8AI score0.00368EPSS
Exploits1References4
OSV
OSV
added 2022/07/17 9:15 a.m.2 views

CVE-2020-7641

This affects all versions of package grunt-util-property. The function call could be tricked into adding or modifying properties of Object.prototype using a proto payload...

7.8CVSS5.8AI score
Exploits0References2
Cvelist
Cvelist
added 2022/07/17 8:40 a.m.25 views

CVE-2020-7641 Prototype Pollution

This affects all versions of package grunt-util-property. The function call could be tricked into adding or modifying properties of Object.prototype using a proto payload...

4CVSS7.6AI score0.00368EPSS
Exploits1References2
CVE
CVE
added 2022/07/17 8:40 a.m.42 views

CVE-2020-7641

CVE-2020-7641 affects the npm package grunt-util-property (all versions). The vulnerability is prototype pollution: the function call could be tricked into adding or modifying properties of Object.prototype using a proto payload, enabling an attacker to modify base object behavior. Public descrip...

7.8CVSS5.7AI score0.00368EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/07/17 12:0 a.m.5 views

grunt-util-property 安全漏洞

grunt-util-property is a package by mikaelkaron personal developer. A security vulnerability exists in grunt-util-property that stems from susceptibility to prototype contamination, where the function call may be tricked into adding or modifying properties of Object.prototype using the proto...

7.8CVSS7.2AI score0.00368EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2020/04/12 12:0 a.m.3 views

grunt-git-describe (>=2.3.1 <=2.4.4), grunt-git-describe-plus (=2.3.3-0) +3 more potentially affected by CVE-2020-7641 via grunt-util-property (=0.0.2)

grunt-util-property NPM version =0.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on grunt-util-property and may be impacted: - grunt-git-describe =2.3.1, =0.1.5, =0.0.1, =0.0.4 Source cves: CVE-2020-7641 Source advisory:...

7.8CVSS7.1AI score0.00368EPSS
Exploits1
Rows per page
Query Builder