CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-40230

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01028EPSS

Exploits0References3

IBM Security Bulletins•added 2022/12/01 4:22 p.m.•34 views

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands may be vulnerable to arbitrary code execution due to [CVE-2022-37609]

Summary Node.js js-beautify is present in the IBM App Connect Enterprise Certified Container DesignerAuthoring operand image. A DesignerAuthoring operand may be vulnerable to arbitrary code execution. This bulletin provides patch information to address the reported vulnerability in Node.js...

9.8CVSS9.8AI score0.01028EPSS

Exploits0Affected Software1

Veracode•added 2022/10/14 10:35 a.m.•18 views

Prototype Pollution

js-beautify is vulnerable to prototype pollution. An attacker is able to pollute any future object creations by passing a crafted malicious payload to mergeOpts function in options.js via the name variable...

9.8CVSS8.7AI score0.01028EPSS

Exploits0References4Affected Software1

NVD•added 2022/10/11 7:15 p.m.•9 views

CVE-2022-37609

Prototype pollution vulnerability in beautify-web js-beautify 1.13.7 via the name variable in options.js...

9.8CVSS0.01028EPSS

Exploits0References3

OSV•added 2022/10/11 7:15 p.m.•11 views

CVE-2022-37609

Prototype pollution vulnerability in beautify-web js-beautify 1.13.7 via the name variable in options.js...

9.8CVSS9.4AI score

Exploits0References3

ATTACKERKB•added 2022/10/11 7:15 p.m.•1 views

CVE-2022-37609

Prototype pollution vulnerability in beautify-web js-beautify 1.13.7 via the name variable in options.js...

9.8CVSS7.3AI score0.01028EPSS

Exploits0References4

Prion•added 2022/10/11 7:15 p.m.•14 views

Code injection

Prototype pollution vulnerability in beautify-web js-beautify 1.13.7 via the name variable in options.js...

7.5CVSS9.4AI score0.01028EPSS

Exploits0References3Affected Software1

UbuntuCve•added 2022/10/11 7:15 p.m.•32 views

CVE-2022-37609

Prototype pollution vulnerability in beautify-web js-beautify 1.13.7 via the name variable in options.js...

9.8CVSS7.2AI score0.01028EPSS

Exploits0References4

OSV•added 2022/10/11 7:15 p.m.•0 views

UBUNTU-CVE-2022-37609

Prototype pollution vulnerability in beautify-web js-beautify 1.13.7 via the name variable in options.js...

9.8CVSS7.3AI score0.01028EPSS

Exploits0References5

Positive Technologies•added 2022/10/11 12:0 a.m.•2 views

PT-2022-24025 · Unknown · Js-Beautify

Name of the Vulnerable Software and Affected Versions: js-beautify version 1.13.7 Description: The issue is related to a prototype pollution vulnerability. It affects the js-beautify library, specifically via the name variable in options.js. Recommendations: For js-beautify version 1.13.7, consid...

9.8CVSS9.2AI score0.01028EPSS

Exploits0References9

CVE•added 2022/10/11 12:0 a.m.•51 views

CVE-2022-37609

CVE-2022-37609 affects the Node.js/js-beautify component in beautify-web, specifically version 1.13.7, due to a prototype pollution flaw in options.js via the name variable. Multiple sources corroborate a high-severity (CVSS v3.1: 9.8) exposure with network attack vector, no user interaction, and...

9.8CVSS9.4AI score0.01028EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/10/11 12:0 a.m.•10 views

CVE-2022-37609

Prototype pollution vulnerability in beautify-web js-beautify 1.13.7 via the name variable in options.js...

9.7AI score0.01028EPSS

Exploits0References3

Veracode•added 2021/12/13 7:30 a.m.•8 views

Regular Expression Denial Of Service (ReDoS)

js-beautify is vulnerable to regular expression denial of service ReDoS attacks. An attacker is able to manipulate the application by inserting specifically crafted input string via the Tokenizer function, resulting in denial of service conditions...

4.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by